ISL_VERIFIED_SIGNATURE_ROOT_PTR ISL_CreateVerfiedSignatureRoot (ISL_CONST_DATA Credentials, ISL_CONST_DATA Signer, ISL_CONST_DATA PublicKey)
This function uses the PublicKey to verify the digital signature specified by the Credentials. It does not construct certificate chains, but must use the key directly. If the credentials support multiple signers, the Signer parameter can be used to determine which signer to verify.
This function does not verify the objects referenced in the manifest sections. However, the manifest sections are verified, and the attributes in the sections can be trusted.
The manifest sections can be enumerated using the object created by ISL_CreateManifestSectionEnumerator.
- Credentials (input)
The complete path name to the digital signature file to be verified.
- Signer (input)
The signer information for directly signed signatures. If the Signer is NULL, a default value is assumed.
- PublicKey (input)
This is the public key of the signer or root certificate authority. The representation for the key must be compatible with the format of public keys in the selected certificate format. If the PublicKey is NULL, a default value is assumed.
Pointer to a verified signature root object if successful, or NULL if unsuccessful.