gnutls_pkcs7_verify_direct(3) API function

SYNOPSIS

#include <gnutls/pkcs7.h>

int gnutls_pkcs7_verify_direct(gnutls_pkcs7_t pkcs7, gnutls_x509_crt_t signer, unsigned idx, const gnutls_datum_t * data, unsigned flags);

ARGUMENTS

gnutls_pkcs7_t pkcs7
should contain a gnutls_pkcs7_t type
gnutls_x509_crt_t signer
the certificate believed to have signed the structure
unsigned idx
the index of the signature info to check
const gnutls_datum_t * data
The data to be verified or NULL
unsigned flags
Zero or an OR list of gnutls_certificate_verify_flags

DESCRIPTION

This function will verify the provided data against the signature present in the SignedData of the PKCS 7 structure. If the data provided are NULL then the data in the encapsulatedContent field will be used instead.

RETURNS

On success, GNUTLS_E_SUCCESS (0) is returned, otherwise a negative error value. A verification error results to a GNUTLS_E_PK_SIG_VERIFY_FAILED and the lack of encapsulated data to verify to a GNUTLS_E_REQUESTED_DATA_NOT_AVAILABLE.

SINCE

3.4.2

REPORTING BUGS

Report bugs to <[email protected]>.
Home page: http://www.gnutls.org

COPYRIGHT

Copyright © 2001-2016 Free Software Foundation, Inc., and others.
Copying and distribution of this file, with or without modification, are permitted in any medium without royalty provided the copyright notice and this notice are preserved.