HTML rendering created 2025-09-06 byMichael Kerrisk, author ofThe Linux Programming Interface. For details of in-depthLinux/UNIX system programming training courses that I teach, lookhere. Hosting byjambit GmbH. |  |
NAME |SYNOPSIS |ARGUMENTS |DESCRIPTION |RETURNS |SINCE |REPORTING BUGS |COPYRIGHT |SEE ALSO |COLOPHON | |
gnutls_verify_stored_pubkey(3) gnutlsgnutls_verify_stored_pubkey(3)gnutls_verify_stored_pubkey - API function
#include <gnutls/gnutls.h>int gnutls_verify_stored_pubkey(const char *db_name, gnutls_tdb_ttdb, const char *host, const char *service,gnutls_certificate_type_tcert_type, const gnutls_datum_t *cert,unsigned intflags);
const char * db_name A file specifying the stored keys (use NULL for the default) gnutls_tdb_t tdb A storage structure or NULL to use the default const char * host The peer's name const char * service non-NULL if this key is specific to a service (e.g. http) gnutls_certificate_type_t cert_type The type of the certificate const gnutls_datum_t * cert The raw (der) data of the certificate unsigned int flags should be 0.
This function will try to verify a raw public-key or a public-key provided via a raw (DER-encoded) certificate using a list of stored public keys. Theservice field if non-NULL should be a port number. Thedb_name variable if non-null specifies a custom backend for the retrieval of entries. If it is NULL then the default file backend will be used. In POSIX-like systems the file backend uses the $HOME/.gnutls/known_hosts file. Note that if the custom storage backend is provided the retrieval function should returnGNUTLS_E_CERTIFICATE_KEY_MISMATCHif the host/service pair is found but key doesn't match,GNUTLS_E_NO_CERTIFICATE_FOUNDif no such host/service with the given key is found, and 0 if it was found. The storage function should return 0 on success. As of GnuTLS 3.6.6 this function also verifies raw public keys.
If no associated public key is found thenGNUTLS_E_NO_CERTIFICATE_FOUNDwill be returned. If a key is found but does not matchGNUTLS_E_CERTIFICATE_KEY_MISMATCHis returned. On success,GNUTLS_E_SUCCESS(0) is returned, or a negative error value on other errors.
3.0.13
Report bugs to <bugs@gnutls.org>. Home page:https://www.gnutls.org
Copyright © 2001-2023 Free Software Foundation, Inc., and others. Copying and distribution of this file, with or without modification, are permitted in any medium without royalty provided the copyright notice and this notice are preserved.
The full documentation forgnutlsis maintained as a Texinfo manual. If the /usr/share/doc/gnutls/ directory does not contain the HTML form visithttps://www.gnutls.org/manual/
This page is part of theGnuTLS (GnuTLS Transport Layer Security Library) project. Information about the project can be found at ⟨http://www.gnutls.org/⟩. If you have a bug report for this manual page, send it to bugs@gnutls.org. This page was obtained from the tarball fetched from ⟨https://www.gnupg.org/ftp/gcrypt/gnutls/⟩ on 2025-08-11. If you discover any rendering problems in this HTML version of the page, or you believe there is a better or more up-to-date source for the page, or you have corrections or improvements to the information in this COLOPHON (which isnot part of the original manual page), send a mail to man-pages@man7.orggnutls 3.8.10gnutls_verify_stored_pubkey(3)HTML rendering created 2025-09-06 byMichael Kerrisk, author ofThe Linux Programming Interface. For details of in-depthLinux/UNIX system programming training courses that I teach, lookhere. Hosting byjambit GmbH. | |