gnutls_x509_crt_list_verify(3) — Linux manual page


gnutls_x509_crt_list_verify(3)   gnutls   gnutls_x509_crt_list_verify(3)

NAME         top

       gnutls_x509_crt_list_verify - API function

SYNOPSIS         top

       #include <gnutls/x509.h>

       int gnutls_x509_crt_list_verify(const gnutls_x509_crt_t *
       cert_list, unsigned cert_list_length, const gnutls_x509_crt_t *
       CA_list, unsigned CA_list_length, const gnutls_x509_crl_t *
       CRL_list, unsigned CRL_list_length, unsigned int flags, unsigned
       int * verify);

ARGUMENTS         top

       const gnutls_x509_crt_t * cert_list
                   is the certificate list to be verified

       unsigned cert_list_length
                   holds the number of certificate in cert_list

       const gnutls_x509_crt_t * CA_list
                   is the CA list which will be used in verification

       unsigned CA_list_length
                   holds the number of CA certificate in CA_list

       const gnutls_x509_crl_t * CRL_list
                   holds a list of CRLs.

       unsigned CRL_list_length
                   the length of CRL list.

       unsigned int flags
                   Flags that may be used to change the verification
                   algorithm. Use OR of the
                   gnutls_certificate_verify_flags enumerations.

       unsigned int * verify
                   will hold the certificate verification output.

DESCRIPTION         top

       This function will try to verify the given certificate list and
       return its status. The details of the verification are the same
       as in gnutls_x509_trust_list_verify_crt2().

       You must check the peer's name in order to check if the verified
       certificate belongs to the actual peer.

       The certificate verification output will be put in  verify and
       will be one or more of the gnutls_certificate_status_t enumerated
       elements bitwise or'd.  For a more detailed verification status
       use gnutls_x509_crt_verify() per list element.

RETURNS         top

       On success, GNUTLS_E_SUCCESS (0) is returned, otherwise a
       negative error value.

REPORTING BUGS         top

       Report bugs to <>.
       Home page:

COPYRIGHT         top

       Copyright © 2001-2023 Free Software Foundation, Inc., and others.
       Copying and distribution of this file, with or without
       modification, are permitted in any medium without royalty
       provided the copyright notice and this notice are preserved.

SEE ALSO         top

       The full documentation for gnutls is maintained as a Texinfo
       manual.  If the /usr/share/doc/gnutls/ directory does not contain
       the HTML form visit

COLOPHON         top

       This page is part of the GnuTLS (GnuTLS Transport Layer Security
       Library) project.  Information about the project can be found at
       ⟨⟩.  If you have a bug report for this
       manual page, send it to  This page was obtained
       from the tarball gnutls-3.8.2.tar.xz fetched from
       ⟨⟩ on 2023-12-22.  If you
       discover any rendering problems in this HTML version of the page,
       or you believe there is a better or more up-to-date source for
       the page, or you have corrections or improvements to the
       information in this COLOPHON (which is not part of the original
       manual page), send a mail to

gnutls                            3.8.2   gnutls_x509_crt_list_verify(3)