gnutls_x509_crt_check_hostname2 — API function
#include <gnutls/x509.h>
int
gnutls_x509_crt_check_hostname2( |
gnutls_x509_crt_t cert, |
| const char * hostname, | |
unsigned int flags); |
should contain an gnutls_x509_crt_t structure
A null terminated string that contains a DNS name
gnutls_certificate_verify_flags
This function will check if the given certificate's subject matches the given hostname. This is a basic implementation of the matching described in RFC2818 (HTTPS), which takes into account wildcards, and the DNSName/IPAddress subject alternative name PKIX extension.
The comparison may have false−negatives as it is done byte by byte in non−ascii names.
When the flag GNUTLS_VERIFY_DO_NOT_ALLOW_WILDCARDS is
specified no wildcards are considered. Otherwise they are
only considered if the domain name consists of three
components or more, and the wildcard starts at the leftmost
position.
The full documentation for gnutls is maintained as a Texinfo manual. If the /usr/share/doc/gnutls/ directory does not contain the HTML form visit
| COPYRIGHT |
|---|
|
Copyright © 2001-2014 Free Software Foundation, Inc.. Copying and distribution of this file, with or without modification, are permitted in any medium without royalty provided the copyright notice and this notice are preserved. |