1gnutls_ocsp_resp_verify_direct(3) gnutls gnutls_ocsp_resp_verify_direct(3)
2
6 gnutls_ocsp_resp_verify_direct - API function
7
9 #include <gnutls/ocsp.h>
10 int gnutls_ocsp_resp_verify_direct(gnutls_ocsp_resp_const_t resp,
12 gnutls_x509_crt_t issuer, unsigned int * verify, unsigned int flags);
13
15 gnutls_ocsp_resp_const_t resp
16 should contain a gnutls_ocsp_resp_t type
17 gnutls_x509_crt_t issuer
19 certificate believed to have signed the response
20 unsigned int * verify
22 output variable with verification status, an
23 gnutls_ocsp_verify_reason_t
24 unsigned int flags
26 verification flags from gnutls_certificate_verify_flags
27
29 Verify signature of the Basic OCSP Response against the public key in
30 the issuer certificate.
31 The output verify variable will hold verification status codes (e.g.,
33 GNUTLS_OCSP_VERIFY_SIGNER_NOT_FOUND, GNUTLS_OCSP_VERIFY_INSECURE_ALGO‐
34 RITHM) which are only valid if the function returned GNUTLS_E_SUCCESS.
35 Note that the function returns GNUTLS_E_SUCCESS even when verification
37 failed. The caller must always inspect the verify variable to find
38 out the verification status.
39 The flags variable should be 0 for now.
41
43 On success, GNUTLS_E_SUCCESS (0) is returned, otherwise a negative
44 error value.
45
47 Report bugs to <bugs@gnutls.org>.
48 Home page: https://www.gnutls.org
49
52 Copyright © 2001-2020 Free Software Foundation, Inc., and others.
53 Copying and distribution of this file, with or without modification,
54 are permitted in any medium without royalty provided the copyright
55 notice and this notice are preserved.
56
58 The full documentation for gnutls is maintained as a Texinfo manual.
59 If the /usr/share/doc/gnutls/ directory does not contain the HTML form
60 visit
61 https://www.gnutls.org/manual/
63gnutls 3.6.13 gnutls_ocsp_resp_verify_direct(3)