CL_CrlVerify, CSSM_CL_CrlVerify - Verify a signed CRL has
not been altered (CDSA)
# include <cdsa/cssm.h>
API: CSSM_RETURN CSSMAPI CSSM_CL_CrlVerify (CSSM_CL_HANDLE
CLHandle, CSSM_CC_HANDLE CCHandle, const CSSM_DATA *CrlToBeVerified,
const CSSM_DATA *SignerCert, const CSSM_FIELD
*VerifyScope, uint32 ScopeSize) SPI: CSSM_RETURN CSSMCLI
CL_CrlVerify (CSSM_CL_HANDLE CLHandle, CSSM_CC_HANDLE
CCHandle, const CSSM_DATA *CrlToBeVerified, const
CSSM_DATA *SignerCert, const CSSM_FIELD *VerifyScope,
uint32 ScopeSize)
Common Security Services Manager library (libcssm.so)
The handle that describes the add-in Certificate Library
module used to perform this function. The handle that
describes the context of this cryptographic operation. A
pointer to the CSSM_DATA structure containing the CRL to
be verified. A pointer to the CSSM_DATA structure containing
the certificate used to sign the CRL. A pointer
to the CSSM_FIELD array containing the tag/value pairs of
the fields to be verified. If the verification scope is
null, the Certificate Library module assumes that a
default set of fields were used in the signing process and
those same fields are used in the verification process.
The number of entries in the verify scope list. If the
verification scope is not specified, the input value for
scope size must be zero.
This function verifies that the signed CRL has not been
altered since it was signed by the designated signer. It
does this by verifying the digital signature over the
fields specified by the VerifyScope parameter.
A CSSM_RETURN value indicating success or specifying a
particular error condition. The value CSSM_OK indicates
success. All other values represent an error condition.
Errors are described in the CDSA technical standard. See
CDSA_intro(3). CSSMERR_CL_INVALID_CONTEXT_HANDLE CSSMERR_CL_INVALID_CERT_POINTER
CSSMERR_CL_INVALID_CRL_POINTER
CSSMERR_CL_UNKNOWN_FORMAT CSSMERR_CL_INVALID_FIELD_POINTER
CSSMERR_CL_UNKNOWN_TAG CSSMERR_CL_INVALID_SCOPE
CSSMERR_CL_INVALID_NUMBER_OF_FIELDS
CSSMERR_CL_SCOPE_NOT_SUPPORTED CSSMERR_CL_VERIFICATION_FAILURE
Books
Intel CDSA Application Developer's Guide (see
CDSA_intro(3))
Reference Pages [Toc] [Back]
Functions for the CSSM API:
CSSM_CL_CrlSign(3)
Functions for the CLI SPI:
CL_CrlSign(3)
CL_CrlVerify(3)
[ Back ] |