NPKIT_VerifyCertChainWithCallback

Creates a thread that verifies the certificate chain passed in (formerly NWPKIVerifyCertChainWithCallback).

Syntax

   #include "NPKIT_Verify.h"
   
   NWRCODE NPKIT_VerifyCertChainWithCallback
   (
      NPKI_VerifyCallBackStruct    *data
   );

Parameters

data
(IN) Points to a NPKI_VerifyCallBackStruct structure. For more information, see Section 4.5, NPKI_VerifyCallBackStruct Flag Values. You must set the first three fields in this structure and the rest of the fields can be filled in by calling that NPKIT_VerifyCertChainWithCallback function. You must allocate and deallocate this structure.

Return Values

This function returns 0 if successful, or a NICI error or a platform-specific error code if a thread could not be created. The return value from the verification is returned in the code field of the NPKI_VerifyCallBackStruct structure.

Remarks

The certificate chain must be in leaf to root order. The last certificate in the chain is assumed to be trusted. If any certificate is invalid (that is, revoked, or expired), the code field in the Section 4.5, NPKI_VerifyCallBackStruct Flag Values contains an error. You must allocate and deallocate the certificate chain structures and data and provide a callback function to receive the results of the verification.

See Also

NPKIT_VerifyCertificate, NPKIT_VerifyCertChain, NPKIT_VerifyIssuerSubjectNameMatch