dane_verify_crt_raw man page

dane_verify_crt_raw — API function

Synopsis

#include <gnutls/dane.h>

int dane_verify_crt_raw(dane_state_t s, const gnutls_datum_t * chain, unsigned chain_size, gnutls_certificate_type_t chain_type, dane_query_t r, unsigned int sflags, unsigned int vflags, unsigned int * verify);

Arguments

dane_state_t s

A DANE state structure (may be NULL)

const gnutls_datum_t * chain

A certificate chain

unsigned chain_size

The size of the chain

gnutls_certificate_type_t chain_type

The type of the certificate chain

dane_query_t r

DANE data to check against

unsigned int sflags

Flags for the initialization of  s (if NULL)

unsigned int vflags

Verification flags; an OR'ed list of dane_verify_flags_t.

unsigned int * verify

An OR'ed list of dane_verify_status_t.

Description

This is the low-level function of dane_verify_crt(). See the high level function for documentation.

This function does not perform any resolving, it utilizes cached entries from  r .

Returns

a negative error code on error and DANE_E_SUCCESS (0) when the DANE entries were successfully parsed, irrespective of whether they were verified (see  verify for that information). If no usable entries were encountered DANE_E_REQUESTED_DATA_NOT_AVAILABLE will be returned.

Reporting Bugs

Report bugs to <bugs@gnutls.org>.
Home page: http://www.gnutls.org

See Also

The full documentation for gnutls is maintained as a Texinfo manual. If the /usr/share/doc/gnutls/ directory does not contain the HTML form visit

http://www.gnutls.org/manual/

Info

3.5.9 gnutls