|
Packit |
aea12f |
.\" DO NOT MODIFY THIS FILE! It was generated by gdoc.
|
|
Packit Service |
991b93 |
.TH "gnutls_pkcs7_verify_direct" 3 "3.6.14" "gnutls" "gnutls"
|
|
Packit |
aea12f |
.SH NAME
|
|
Packit |
aea12f |
gnutls_pkcs7_verify_direct \- API function
|
|
Packit |
aea12f |
.SH SYNOPSIS
|
|
Packit |
aea12f |
.B #include <gnutls/pkcs7.h>
|
|
Packit |
aea12f |
.sp
|
|
Packit |
aea12f |
.BI "int gnutls_pkcs7_verify_direct(gnutls_pkcs7_t " pkcs7 ", gnutls_x509_crt_t " signer ", unsigned " idx ", const gnutls_datum_t * " data ", unsigned " flags ");"
|
|
Packit |
aea12f |
.SH ARGUMENTS
|
|
Packit |
aea12f |
.IP "gnutls_pkcs7_t pkcs7" 12
|
|
Packit |
aea12f |
should contain a \fBgnutls_pkcs7_t\fP type
|
|
Packit |
aea12f |
.IP "gnutls_x509_crt_t signer" 12
|
|
Packit |
aea12f |
the certificate believed to have signed the structure
|
|
Packit |
aea12f |
.IP "unsigned idx" 12
|
|
Packit |
aea12f |
the index of the signature info to check
|
|
Packit |
aea12f |
.IP "const gnutls_datum_t * data" 12
|
|
Packit |
aea12f |
The data to be verified or \fBNULL\fP
|
|
Packit |
aea12f |
.IP "unsigned flags" 12
|
|
Packit |
aea12f |
Zero or an OR list of \fBgnutls_certificate_verify_flags\fP
|
|
Packit |
aea12f |
.SH "DESCRIPTION"
|
|
Packit |
aea12f |
This function will verify the provided data against the signature
|
|
Packit |
aea12f |
present in the SignedData of the PKCS \fB7\fP structure. If the data
|
|
Packit |
aea12f |
provided are NULL then the data in the encapsulatedContent field
|
|
Packit |
aea12f |
will be used instead.
|
|
Packit |
aea12f |
|
|
Packit |
aea12f |
Note that, unlike \fBgnutls_pkcs7_verify()\fP this function does not
|
|
Packit |
aea12f |
verify the key purpose of the signer. It is expected for the caller
|
|
Packit |
aea12f |
to verify the intended purpose of the \fBsigner\fP \-e.g., via \fBgnutls_x509_crt_get_key_purpose_oid()\fP,
|
|
Packit |
aea12f |
or \fBgnutls_x509_crt_check_key_purpose()\fP.
|
|
Packit |
aea12f |
|
|
Packit |
aea12f |
Note also, that since GnuTLS 3.5.6 this function introduces checks in the
|
|
Packit |
aea12f |
end certificate ( \fIsigner\fP ), including time checks and key usage checks.
|
|
Packit |
aea12f |
.SH "RETURNS"
|
|
Packit |
aea12f |
On success, \fBGNUTLS_E_SUCCESS\fP (0) is returned, otherwise a
|
|
Packit |
aea12f |
negative error value. A verification error results to a
|
|
Packit |
aea12f |
\fBGNUTLS_E_PK_SIG_VERIFY_FAILED\fP and the lack of encapsulated data
|
|
Packit |
aea12f |
to verify to a \fBGNUTLS_E_REQUESTED_DATA_NOT_AVAILABLE\fP.
|
|
Packit |
aea12f |
.SH "SINCE"
|
|
Packit |
aea12f |
3.4.2
|
|
Packit |
aea12f |
.SH "REPORTING BUGS"
|
|
Packit |
aea12f |
Report bugs to <bugs@gnutls.org>.
|
|
Packit |
aea12f |
.br
|
|
Packit |
aea12f |
Home page: https://www.gnutls.org
|
|
Packit |
aea12f |
|
|
Packit |
aea12f |
.SH COPYRIGHT
|
|
Packit Service |
991b93 |
Copyright \(co 2001- Free Software Foundation, Inc., and others.
|
|
Packit |
aea12f |
.br
|
|
Packit |
aea12f |
Copying and distribution of this file, with or without modification,
|
|
Packit |
aea12f |
are permitted in any medium without royalty provided the copyright
|
|
Packit |
aea12f |
notice and this notice are preserved.
|
|
Packit |
aea12f |
.SH "SEE ALSO"
|
|
Packit |
aea12f |
The full documentation for
|
|
Packit |
aea12f |
.B gnutls
|
|
Packit |
aea12f |
is maintained as a Texinfo manual.
|
|
Packit |
aea12f |
If the /usr/share/doc/gnutls/
|
|
Packit |
aea12f |
directory does not contain the HTML form visit
|
|
Packit |
aea12f |
.B
|
|
Packit |
aea12f |
.IP https://www.gnutls.org/manual/
|
|
Packit |
aea12f |
.PP
|