gnutls_x509_crl_verify - API function
int gnutls_x509_crl_verify(gnutls_x509_crl_t crl, const
gnutls_x509_crt_t * trusted_cas, unsigned
tcas_size, unsigned int flags, unsigned int *
- gnutls_x509_crl_t crl
- is the crl to be verified
- const gnutls_x509_crt_t * trusted_cas
- is a certificate list that is considered to be trusted one
- unsigned tcas_size
- holds the number of CA certificates in CA_list
- unsigned int flags
- Flags that may be used to change the verification algorithm. Use OR of the
- unsigned int * verify
- will hold the crl verification output.
This function will try to verify the given crl and return its verification
status. See gnutls_x509_crt_list_verify()
for a detailed description of
return values. Note that since GnuTLS 3.1.4 this function includes the time
Note that value in verify
is set only when the return value of this
function is success (i.e, failure to trust a CRL a certificate does not imply
a negative return value).
Before GnuTLS 3.5.7 this function would return zero or a positive number on
On success, GNUTLS_E_SUCCESS
(0), otherwise a negative error value.
Report bugs to <firstname.lastname@example.org>.
Home page: https://www.gnutls.org
Copyright © 2001-2019 Free Software Foundation, Inc., and others.
Copying and distribution of this file, with or without modification, are
permitted in any medium without royalty provided the copyright notice and this
notice are preserved.
The full documentation for gnutls
is maintained as a Texinfo manual. If
the /usr/share/doc/gnutls/ directory does not contain the HTML form visit