gnutls_x509_crt_list_verify(3)     gnutls     gnutls_x509_crt_list_verify(3)

NAME         top

       gnutls_x509_crt_list_verify - API function

SYNOPSIS         top

       #include <gnutls/x509.h>

       int gnutls_x509_crt_list_verify(const gnutls_x509_crt_t * cert_list,
       unsigned cert_list_length, const gnutls_x509_crt_t * CA_list,
       unsigned CA_list_length, const gnutls_x509_crl_t * CRL_list, unsigned
       CRL_list_length, unsigned int flags, unsigned int * verify);

ARGUMENTS         top

       const gnutls_x509_crt_t * cert_list
                   is the certificate list to be verified

       unsigned cert_list_length
                   holds the number of certificate in cert_list

       const gnutls_x509_crt_t * CA_list
                   is the CA list which will be used in verification

       unsigned CA_list_length
                   holds the number of CA certificate in CA_list

       const gnutls_x509_crl_t * CRL_list
                   holds a list of CRLs.

       unsigned CRL_list_length
                   the length of CRL list.

       unsigned int flags
                   Flags that may be used to change the verification
                   algorithm. Use OR of the gnutls_certificate_verify_flags

       unsigned int * verify
                   will hold the certificate verification output.

DESCRIPTION         top

       This function will try to verify the given certificate list and
       return its status. The details of the verification are the same as in

       You must check the peer's name in order to check if the verified
       certificate belongs to the actual peer.

       The certificate verification output will be put in  verify and will
       be one or more of the gnutls_certificate_status_t enumerated elements
       bitwise or'd.  For a more detailed verification status use
       gnutls_x509_crt_verify() per list element.

RETURNS         top

       On success, GNUTLS_E_SUCCESS (0) is returned, otherwise a negative
       error value.

REPORTING BUGS         top

       Report bugs to <>.
       Home page:

COPYRIGHT         top

       Copyright © 2001-2017 Free Software Foundation, Inc., and others.
       Copying and distribution of this file, with or without modification,
       are permitted in any medium without royalty provided the copyright
       notice and this notice are preserved.

SEE ALSO         top

       The full documentation for gnutls is maintained as a Texinfo manual.
       If the /usr/share/doc/gnutls/ directory does not contain the HTML
       form visit 

COLOPHON         top

       This page is part of the GnuTLS (GnuTLS Transport Layer Security
       Library) project.  Information about the project can be found at 
       ⟨⟩.  If you have a bug report for this manual
       page, send it to  This page was obtained from the
       tarball gnutls-3.6.1.tar.xz fetched from
       ⟨⟩ on 2018-02-02.  If you discover
       any rendering problems in this HTML version of the page, or you
       believe there is a better or more up-to-date source for the page, or
       you have corrections or improvements to the information in this
       COLOPHON (which is not part of the original manual page), send a mail

gnutls                              3.6.1     gnutls_x509_crt_list_verify(3)