Skip site navigation (1)Skip section navigation (2)

FreeBSD Manual Pages

  
 
  

home | help
gnutls_verify_stored_pubkey(3)	    gnutls	gnutls_verify_stored_pubkey(3)

NAME
       gnutls_verify_stored_pubkey - API function

SYNOPSIS
       #include	<gnutls/gnutls.h>

       int gnutls_verify_stored_pubkey(const char * db_name, gnutls_tdb_t tdb,
       const char * host,  const  char	*  service,  gnutls_certificate_type_t
       cert_type, const	gnutls_datum_t * cert, unsigned	int flags);

ARGUMENTS
       const char * db_name
		   A  file  specifying	the  stored keys (use NULL for the de-
		   fault)

       gnutls_tdb_t tdb
		   A storage structure or NULL to use the default

       const char * host
		   The peer's name

       const char * service
		   non-NULL if this key	is specific to a service (e.g. http)

       gnutls_certificate_type_t cert_type
		   The type of the certificate

       const gnutls_datum_t * cert
		   The raw (der) data of the certificate

       unsigned	int flags
		   should be 0.

DESCRIPTION
       This function will try to verify	a raw public-key or a public-key  pro-
       vided via a raw (DER-encoded) certificate using a list of stored	public
       keys.  The  service field if non-NULL should be a port number.

       The  db_name variable if	non-null specifies a custom  backend  for  the
       retrieval  of entries. If it is NULL then the default file backend will
       be  used.  In  POSIX-like   systems   the   file	  backend   uses   the
       $HOME/.gnutls/known_hosts file.

       Note that if the	custom storage backend is provided the retrieval func-
       tion should return GNUTLS_E_CERTIFICATE_KEY_MISMATCH if	the  host/ser-
       vice pair is found but key doesn't match, GNUTLS_E_NO_CERTIFICATE_FOUND
       if no such host/service with the	given key is found, and	0  if  it  was
       found. The storage function should return 0 on success.

       As of GnuTLS 3.6.6 this function	also verifies raw public keys.

RETURNS
       If no associated	public key is found then GNUTLS_E_NO_CERTIFICATE_FOUND
       will be returned. If a key is found but does  not  match	 GNUTLS_E_CER-
       TIFICATE_KEY_MISMATCH  is returned. On success, GNUTLS_E_SUCCESS	(0) is
       returned, or a negative error value on other errors.

SINCE
       3.0.13

REPORTING BUGS
       Report bugs to <bugs@gnutls.org>.
       Home page: https://www.gnutls.org

COPYRIGHT
       Copyright (C) 2001- Free	Software Foundation, Inc., and others.
       Copying and distribution	of this	file, with  or	without	 modification,
       are  permitted in any medium without royalty provided the copyright no-
       tice and	this notice are	preserved.

SEE ALSO
       The full	documentation for gnutls is maintained as  a  Texinfo  manual.
       If the /usr/local/share/doc/gnutls/ directory does not contain the HTML
       form visit

       https://www.gnutls.org/manual/

gnutls				    3.6.16	gnutls_verify_stored_pubkey(3)

NAME | SYNOPSIS | ARGUMENTS | DESCRIPTION | RETURNS | SINCE | REPORTING BUGS | COPYRIGHT | SEE ALSO

Want to link to this manual page? Use this URL:
<https://www.freebsd.org/cgi/man.cgi?query=gnutls_verify_stored_pubkey&sektion=3&manpath=FreeBSD+13.0-RELEASE+and+Ports>

home | help