gnutls_ocsp_resp_verify_direct(3) | gnutls | gnutls_ocsp_resp_verify_direct(3) |
gnutls_ocsp_resp_verify_direct - API function
#include <gnutls/ocsp.h>
int gnutls_ocsp_resp_verify_direct(gnutls_ocsp_resp_const_t resp, gnutls_x509_crt_t issuer, unsigned int * verify, unsigned int flags);
Verify signature of the Basic OCSP Response against the public key in the issuer certificate.
The output verify variable will hold verification status codes (e.g., GNUTLS_OCSP_VERIFY_SIGNER_NOT_FOUND, GNUTLS_OCSP_VERIFY_INSECURE_ALGORITHM) which are only valid if the function returned GNUTLS_E_SUCCESS.
Note that the function returns GNUTLS_E_SUCCESS even when verification failed. The caller must always inspect the verify variable to find out the verification status.
The flags variable should be 0 for now.
On success, GNUTLS_E_SUCCESS (0) is returned, otherwise a negative error value.
Report bugs to <bugs@gnutls.org>.
Home page: https://www.gnutls.org
Copyright © 2001- Free Software Foundation, Inc., and
others.
Copying and distribution of this file, with or without modification, are
permitted in any medium without royalty provided the copyright notice and
this notice are preserved.
The full documentation for gnutls is maintained as a Texinfo manual. If the /usr/share/doc/gnutls/ directory does not contain the HTML form visit
3.7.9 | gnutls |