1gnutls_certificate_verify_peers2(3) gnutls gnutls_certificate_verify_peers2(3)
2
3
4
6 gnutls_certificate_verify_peers2 - API function
7
9 #include <gnutls/gnutls.h>
10
11 int gnutls_certificate_verify_peers2(gnutls_session_t session, unsigned
12 int * status);
13
15 gnutls_session_t session
16 is a gnutls session
17
18 unsigned int * status
19 is the output of the verification
20
22 This function will try to verify the peer's certificate and return its
23 status (trusted, invalid etc.). The value of status should be one or
24 more of the gnutls_certificate_status_t enumerated elements bitwise
25 or'd. To avoid denial of service attacks some default upper limits
26 regarding the certificate key size and chain size are set. To override
27 them use gnutls_certificate_set_verify_limits().
28
29 Note that you must also check the peer's name in order to check if the
30 verified certificate belongs to the actual peer.
31
32 This function uses gnutls_x509_crt_list_verify() with the CAs in the
33 credentials as trusted CAs.
34
36 a negative error code on error and zero on success.
37
39 Report bugs to <bug-gnutls@gnu.org>. GnuTLS home page:
40 http://www.gnu.org/software/gnutls/ General help using GNU software:
41 http://www.gnu.org/gethelp/
42
44 Copyright © 2008 Free Software Foundation.
45 Copying and distribution of this file, with or without modification,
46 are permitted in any medium without royalty provided the copyright
47 notice and this notice are preserved.
48
50 The full documentation for gnutls is maintained as a Texinfo manual.
51 If the info and gnutls programs are properly installed at your site,
52 the command
53
54 info gnutls
55
56 should give you access to the complete manual.
57
58
59
60gnutls 2.12.6.1gnutls_certificate_verify_peers2(3)