const gnutls_x509_crt_t * cert_list
is the certificate list to be verified
holds the number of certificate in cert_list
const gnutls_x509_crt_t * CA_list
is the CA list which will be used in verification
holds the number of CA certificate in CA_list
const gnutls_x509_crl_t * CRL_list
holds a list of CRLs.
the length of CRL list.
unsigned int flags
Flags that may be used to change the verification
algorithm. Use OR of the gnutls_certificate_verify_flags
unsigned int * verify
will hold the certificate verification output.
This function will try to verify the given certificate list and
return its status. The details of the verification are the same as in
You must check the peer's name in order to check if the verified
certificate belongs to the actual peer.
The certificate verification output will be put in verify and will
be one or more of the gnutls_certificate_status_t enumerated elements
bitwise or'd. For a more detailed verification status use
gnutls_x509_crt_verify() per list element.
This page is part of the GnuTLS (GnuTLS Transport Layer Security
Library) project. Information about the project can be found at
⟨http://www.gnutls.org/⟩. If you have a bug report for this manual
page, send it to firstname.lastname@example.org.. This page was obtained from the
tarball gnutls-3.5.9.tar.xz fetched from
⟨http://www.gnutls.org/download.html⟩ on 2017-04-25. If you discover
any rendering problems in this HTML version of the page, or you
believe there is a better or more up-to-date source for the page, or
you have corrections or improvements to the information in this
COLOPHON (which is not part of the original manual page), send a mail
gnutls 3.5.9 gnutls_x509_crt_list_verify(3)