gnutls_pkcs7_verify(3) API function


#include <gnutls/pkcs7.h>

int gnutls_pkcs7_verify(gnutls_pkcs7_t pkcs7, gnutls_x509_trust_list_t tl, gnutls_typed_vdata_st * vdata, unsigned int vdata_size, unsigned idx, const gnutls_datum_t * data, unsigned flags);


gnutls_pkcs7_t pkcs7
should contain a gnutls_pkcs7_t type
gnutls_x509_trust_list_t tl
A list of trusted certificates
gnutls_typed_vdata_st * vdata
an array of typed data
unsigned int vdata_size
the number of data elements
unsigned idx
the index of the signature info to check
const gnutls_datum_t * data
The data to be verified or NULL
unsigned flags
Zero or an OR list of gnutls_certificate_verify_flags


This function will verify the provided data against the signature present in the SignedData of the PKCS 7 structure. If the data provided are NULL then the data in the encapsulatedContent field will be used instead.


On success, GNUTLS_E_SUCCESS (0) is returned, otherwise a negative error value. A verification error results to a GNUTLS_E_PK_SIG_VERIFY_FAILED and the lack of encapsulated data to verify to a GNUTLS_E_REQUESTED_DATA_NOT_AVAILABLE.




Report bugs to <[email protected]>.
Home page:


Copyright © 2001-2016 Free Software Foundation, Inc., and others.
Copying and distribution of this file, with or without modification, are permitted in any medium without royalty provided the copyright notice and this notice are preserved.