DOKK / manpages / debian 10 / gnutls-doc / gnutls_x509_crt_verify_data2.3.en
gnutls_x509_crt_verify_data2(3) gnutls gnutls_x509_crt_verify_data2(3)

gnutls_x509_crt_verify_data2 - API function

#include <gnutls/x509.h>

int gnutls_x509_crt_verify_data2(gnutls_x509_crt_t crt, gnutls_sign_algorithm_t algo, unsigned int flags, const gnutls_datum_t * data, const gnutls_datum_t * signature);

Holds the certificate to verify with
The signature algorithm used
Zero or an OR list of gnutls_certificate_verify_flags
holds the signed data
contains the signature

This function will verify the given signed data, using the parameters from the certificate.

In case of a verification failure GNUTLS_E_PK_SIG_VERIFY_FAILED is returned, GNUTLS_E_EXPIRED or GNUTLS_E_NOT_YET_ACTIVATED on expired or not yet activated certificate and zero or positive code on success.

Note that since GnuTLS 3.5.6 this function introduces checks in the end certificate ( crt ), including time checks and key usage checks.

3.4.0

Report bugs to <bugs@gnutls.org>.
Home page: https://www.gnutls.org

Copyright © 2001-2022 Free Software Foundation, Inc., and others.
Copying and distribution of this file, with or without modification, are permitted in any medium without royalty provided the copyright notice and this notice are preserved.

The full documentation for gnutls is maintained as a Texinfo manual. If the /usr/share/doc/gnutls/ directory does not contain the HTML form visit

3.6.7 gnutls