1dane_verify_session_crt(3)          gnutls          dane_verify_session_crt(3)
2
3
4

NAME

6       dane_verify_session_crt - API function
7

SYNOPSIS

9       #include <gnutls/dane.h>
10
11       int  dane_verify_session_crt(dane_state_t  s, gnutls_session_t session,
12       const char * hostname, const char * proto, unsigned int port,  unsigned
13       int sflags, unsigned int vflags, unsigned int * verify);
14

ARGUMENTS

16       dane_state_t s
17                   A DANE state structure (may be NULL)
18
19       gnutls_session_t session
20                   A gnutls session
21
22       const char * hostname
23                   The hostname associated with the chain
24
25       const char * proto
26                   The protocol of the service connecting (e.g. tcp)
27
28       unsigned int port
29                   The port of the service connecting (e.g. 443)
30
31       unsigned int sflags
32                   Flags for the initialization of  s (if NULL)
33
34       unsigned int vflags
35                   Verification flags; an OR'ed list of dane_verify_flags_t.
36
37       unsigned int * verify
38                   An OR'ed list of dane_verify_status_t.
39

DESCRIPTION

41       This  function  will  verify session's certificate chain against the CA
42       constrains and/or the certificate available via  DANE.   See  dane_ver‐
43       ify_crt() for more information.
44
45       This  will not verify the chain for validity; unless the DANE verifica‐
46       tion is restricted to end certificates, this must be be performed sepa‐
47       rately using gnutls_certificate_verify_peers3().
48

RETURNS

50       a  negative  error  code  on error and DANE_E_SUCCESS (0) when the DANE
51       entries were successfully parsed, irrespective  of  whether  they  were
52       verified  (see  verify for that information). If no usable entries were
53       encountered DANE_E_REQUESTED_DATA_NOT_AVAILABLE will be returned.
54

REPORTING BUGS

56       Report bugs to <bugs@gnutls.org>.
57       Home page: http://www.gnutls.org
58
59

COPYRIGHT

61       Copyright © 2001-2018 Free Software Foundation, Inc., and others.
62       Copying and distribution of this file, with  or  without  modification,
63       are  permitted  in  any  medium  without royalty provided the copyright
64       notice and this notice are preserved.
65

SEE ALSO

67       The full documentation for gnutls is maintained as  a  Texinfo  manual.
68       If  the /usr/share/doc/gnutls/ directory does not contain the HTML form
69       visit
70
71       http://www.gnutls.org/manual/
72
73gnutls                               3.6.5          dane_verify_session_crt(3)