diff options
author | Daniel Baumann <daniel.baumann@progress-linux.org> | 2024-04-28 07:33:12 +0000 |
---|---|---|
committer | Daniel Baumann <daniel.baumann@progress-linux.org> | 2024-04-28 07:33:12 +0000 |
commit | 36082a2fe36ecd800d784ae44c14f1f18c66a7e9 (patch) | |
tree | 6c68e0c0097987aff85a01dabddd34b862309a7c /doc/manpages/gnutls_pkcs7_verify_direct.3 | |
parent | Initial commit. (diff) | |
download | gnutls28-upstream.tar.xz gnutls28-upstream.zip |
Adding upstream version 3.7.9.upstream/3.7.9upstream
Signed-off-by: Daniel Baumann <daniel.baumann@progress-linux.org>
Diffstat (limited to 'doc/manpages/gnutls_pkcs7_verify_direct.3')
-rw-r--r-- | doc/manpages/gnutls_pkcs7_verify_direct.3 | 59 |
1 files changed, 59 insertions, 0 deletions
diff --git a/doc/manpages/gnutls_pkcs7_verify_direct.3 b/doc/manpages/gnutls_pkcs7_verify_direct.3 new file mode 100644 index 0000000..5437e70 --- /dev/null +++ b/doc/manpages/gnutls_pkcs7_verify_direct.3 @@ -0,0 +1,59 @@ +.\" DO NOT MODIFY THIS FILE! It was generated by gdoc. +.TH "gnutls_pkcs7_verify_direct" 3 "3.7.9" "gnutls" "gnutls" +.SH NAME +gnutls_pkcs7_verify_direct \- API function +.SH SYNOPSIS +.B #include <gnutls/pkcs7.h> +.sp +.BI "int gnutls_pkcs7_verify_direct(gnutls_pkcs7_t " pkcs7 ", gnutls_x509_crt_t " signer ", unsigned " idx ", const gnutls_datum_t * " data ", unsigned " flags ");" +.SH ARGUMENTS +.IP "gnutls_pkcs7_t pkcs7" 12 +should contain a \fBgnutls_pkcs7_t\fP type +.IP "gnutls_x509_crt_t signer" 12 +the certificate believed to have signed the structure +.IP "unsigned idx" 12 +the index of the signature info to check +.IP "const gnutls_datum_t * data" 12 +The data to be verified or \fBNULL\fP +.IP "unsigned flags" 12 +Zero or an OR list of \fBgnutls_certificate_verify_flags\fP +.SH "DESCRIPTION" +This function will verify the provided data against the signature +present in the SignedData of the PKCS \fB7\fP structure. If the data +provided are NULL then the data in the encapsulatedContent field +will be used instead. + +Note that, unlike \fBgnutls_pkcs7_verify()\fP this function does not +verify the key purpose of the signer. It is expected for the caller +to verify the intended purpose of the \fBsigner\fP \-e.g., via \fBgnutls_x509_crt_get_key_purpose_oid()\fP, +or \fBgnutls_x509_crt_check_key_purpose()\fP. + +Note also, that since GnuTLS 3.5.6 this function introduces checks in the +end certificate ( \fIsigner\fP ), including time checks and key usage checks. +.SH "RETURNS" +On success, \fBGNUTLS_E_SUCCESS\fP (0) is returned, otherwise a +negative error value. A verification error results to a +\fBGNUTLS_E_PK_SIG_VERIFY_FAILED\fP and the lack of encapsulated data +to verify to a \fBGNUTLS_E_REQUESTED_DATA_NOT_AVAILABLE\fP. +.SH "SINCE" +3.4.2 +.SH "REPORTING BUGS" +Report bugs to <bugs@gnutls.org>. +.br +Home page: https://www.gnutls.org + +.SH COPYRIGHT +Copyright \(co 2001- Free Software Foundation, Inc., and others. +.br +Copying and distribution of this file, with or without modification, +are permitted in any medium without royalty provided the copyright +notice and this notice are preserved. +.SH "SEE ALSO" +The full documentation for +.B gnutls +is maintained as a Texinfo manual. +If the /usr/share/doc/gnutls/ +directory does not contain the HTML form visit +.B +.IP https://www.gnutls.org/manual/ +.PP |