Startseite Erkunden Hilfe
Anmelden
OWEALs
/
openssl
Mirror von git://git.openssl.org/openssl.git
2
0
Fork 0
Dateien Issues 1 Wiki
Struktur: 25cf949fc6
Branches Tags
openssl
/
doc
/
man3
/
TS_VERIFY_CTX_set_certs.pod

TS_VERIFY_CTX_set_certs.pod 2.0 KB
Verlauf Originalformat

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657 
  1. =pod
    2. 

  2. 

  3. =head1 NAME
    4. 

  4. 

  5. TS_VERIFY_CTX_set_certs, TS_VERIFY_CTS_set_certs
    6. 

  6. - set certificates for TS response verification
    7. 

  7. 

  8. =head1 SYNOPSIS
    9. 

  9. 

  10.  #include <openssl/ts.h>
    11. 

  11. 

  12.  STACK_OF(X509) *TS_VERIFY_CTX_set_certs(TS_VERIFY_CTX *ctx,
    13. 

  13.                                          STACK_OF(X509) *certs);
    14. 

  14.  STACK_OF(X509) *TS_VERIFY_CTS_set_certs(TS_VERIFY_CTX *ctx,
    15. 

  15.                                          STACK_OF(X509) *certs);
    16. 

  16. 

  17. =head1 DESCRIPTION
    18. 

  18. 

  19. The Time-Stamp Protocol (TSP) is defined by RFC 3161. TSP is a protocol used to
    20. 

  20. provide long term proof of the existence of a certain datum before a particular
    21. 

  21. time. TSP defines a Time Stamping Authority (TSA) and an entity who shall make
    22. 

  22. requests to the TSA. Usually the TSA is denoted as the server side and the
    23. 

  23. requesting entity is denoted as the client.
    24. 

  24. 

  25. In TSP, when a server is sending a response to a client, the server normally
    26. 

  26. needs to sign the response data - the TimeStampToken (TST) - with its private
    27. 

  27. key. Then the client shall verify the received TST by the server's certificate
    28. 

  28. chain.
    29. 

  29. 

  30. TS_VERIFY_CTX_set_certs() is used to set the server's certificate chain when
    31. 

  31. verifying a TST. B<ctx> is the verification context created in advance and
    32. 

  32. B<certs> is a stack of B<X509> certificates.
    33. 

  33. 

  34. TS_VERIFY_CTS_set_certs() is a misspelled version of TS_VERIFY_CTX_set_certs()
    35. 

  35. which takes the same parameters and returns the same result.
    36. 

  36. 

  37. =head1 RETURN VALUES
    38. 

  38. 

  39. TS_VERIFY_CTX_set_certs() returns the stack of B<X509> certificates the user
    40. 

  40. passes in via parameter B<certs>.
    41. 

  41. 

  42. =head1 HISTORY
    43. 

  43. 

  44. The spelling of TS_VERIFY_CTX_set_certs() was corrected in OpenSSL 3.0.0.
    45. 

  45. The misspelled version TS_VERIFY_CTS_set_certs() has been retained for
    46. 

  46. compatibility reasons, but it is deprecated in OpenSSL 3.0.0.
    47. 

  47. 

  48. =head1 COPYRIGHT
    49. 

  49. 

  50. Copyright 2019-2020 The OpenSSL Project Authors. All Rights Reserved.
    51. 

  51. 

  52. Licensed under the Apache License 2.0 (the "License").  You may not use
    53. 

  53. this file except in compliance with the License.  You can obtain a copy
    54. 

  54. in the file LICENSE in the source distribution or at
    55. 

  55. L<https://www.openssl.org/source/license.html>.
    56. 

  56. 

  57. =cut
    58.