Novell Documentation: Novell Certificate Server Libraries for C

NPKI_VerifyCallBackStruct

Contains information defining a callback structure.

Structure

   typedef struct NPKI_VerifyCallBackStruct
   {
        void                 (*callback) (void *data);
        NPKI_CertChain        *certificateChain;
        nuint32                flags;
        NWRCODE                ccode;
        nuint32                cRLReason;
        nuint32                cRLHoldInstruction;
        time_t                 cRLRevocationTime;
        time_t                 cRLInvalidityDateTime;
        NPKI_CertChain        *revokedCertificate;
        nuint32                certInvalidityReason;
        void                  *reserved1;
        void                  *reserved2;
        void                  *reserved3;
        void                  *userData;
   }NPKI_VerifyCallBackStruct;

Fields

callback (void* data)

(IN) Points to the user-defined callback function.

certificateChain

(IN) Points to a linked list of NPKIT_VerifyCertChain structures containing the certificate chain in leaf to root order.

flags

(IN) Pass in one of the following flags:

NPKI_VERIFY_NORMAL
NPKI_VERIFY_DONT_CHECK_CERTIFICATE
NPKI_VERIFY_DONT_CHECK_CRL

For more information, see Section 4.5, NPKI_VerifyCallBackStruct Flag Values.

ccode

(OUT) Specifies whether the verify function succeeded or not.

cRLReason

(OUT) Specifies the reason code from the CRL (only when certificate is on the CRL). This field is set only when the ccode is set to PKI_E_CERT_INVALID.

cRLHoldInstruction

(OUT) Specifies the hold instruction from the CRL. This field is set only when the ccode is set to PKI_E_CERT_INVALID.

cRLRevocationTime

(OUT) Specifies the time of certificate revocation. This field is set only when the ccode is set to PKI_E_CERT_INVALID.

cRLInvalidityDateTime

(OUT) Specifies the time the certificate became invalid (only when certificate is on the CRL and invalidityDate is specified on the CRL). Thisfield is set only if the ccode is set to PKI_E_CERT_INVALID.

revokedCertificate

(OUT) Points to the invalid certificate. This field is set only when the ccode is set to PKI_E_CERT_INVALID.

certInvalidityReason

(OUT) Code to specify why the certificate is invalid. This will only be set if the ccode is set to PKI_E_CERT_INVALID.

reserved1

Reserved for future use.

reserved2

Reserved for future use.

reserved3

Reserved for future use.

userData

(IN) Points to a user-defined data structure. This field is available for you to pass information to the callback function.

Remarks

Points to the following structure is passed into the data field of the function NPKIT_VerifyCertChainWithCallback.

NOTE:This structure must be allocated and deallocated by the caller.