Página inicial Explorar Ajuda
Entrar
OWEALs
/
openssl
mirror de git://git.openssl.org/openssl.git
2
0
Fork 0
Arquivos Issues 1 Wiki
Tree: 6594baf645
Branches Tags
openssl
/
doc
/
man3
/
TS_VERIFY_CTX_set_certs.pod

TS_VERIFY_CTX_set_certs.pod 2.1 KB
Histórico Raw

12345678910111213141516171819202122232425262728293031323334353637383940414243444546474849505152535455565758596061 
  1. =pod
    2. 

  2. 

  3. =head1 NAME
    4. 

  4. 

  5. TS_VERIFY_CTX_set_certs, TS_VERIFY_CTS_set_certs
    6. 

  6. - set certificates for TS response verification
    7. 

  7. 

  8. =head1 SYNOPSIS
    9. 

  9. 

  10.  #include <openssl/ts.h>
    11. 

  11. 

  12.  STACK_OF(X509) *TS_VERIFY_CTX_set_certs(TS_VERIFY_CTX *ctx,
    13. 

  13.                                          STACK_OF(X509) *certs);
    14. 

  14.  STACK_OF(X509) *TS_VERIFY_CTS_set_certs(TS_VERIFY_CTX *ctx,
    15. 

  15.                                          STACK_OF(X509) *certs);
    16. 

  16. 

  17. =head1 DESCRIPTION
    18. 

  18. 

  19. The Time-Stamp Protocol (TSP) is defined by RFC 3161. TSP is a protocol used to
    20. 

  20. provide long term proof of the existence of a certain datum before a particular
    21. 

  21. time. TSP defines a Time Stamping Authority (TSA) and an entity who shall make
    22. 

  22. requests to the TSA. Usually the TSA is denoted as the server side and the
    23. 

  23. requesting entity is denoted as the client.
    24. 

  24. 

  25. In TSP, when a server is sending a response to a client, the server normally
    26. 

  26. needs to sign the response data - the TimeStampToken (TST) - with its private
    27. 

  27. key. Then the client shall verify the received TST by the server's certificate
    28. 

  28. chain.
    29. 

  29. 

  30. TS_VERIFY_CTX_set_certs() is used to set the server's certificate chain when
    31. 

  31. verifying a TST. B<ctx> is the verification context created in advance and
    32. 

  32. B<certs> is a stack of B<X509> certificates.
    33. 

  33. 

  34. TS_VERIFY_CTS_set_certs() is a misspelled version of TS_VERIFY_CTX_set_certs()
    35. 

  35. which takes the same parameters and returns the same result.
    36. 

  36. 

  37. =head1 RETURN VALUES
    38. 

  38. 

  39. TS_VERIFY_CTX_set_certs() returns the stack of B<X509> certificates the user
    40. 

  40. passes in via parameter B<certs>.
    41. 

  41. 

  42. =head1 SEE ALSO
    43. 

  43. 

  44. L<OSSL_ESS_check_signing_certs(3)>
    45. 

  45. 

  46. =head1 HISTORY
    47. 

  47. 

  48. The spelling of TS_VERIFY_CTX_set_certs() was corrected in OpenSSL 3.0.0.
    49. 

  49. The misspelled version TS_VERIFY_CTS_set_certs() has been retained for
    50. 

  50. compatibility reasons, but it is deprecated in OpenSSL 3.0.0.
    51. 

  51. 

  52. =head1 COPYRIGHT
    53. 

  53. 

  54. Copyright 2019-2021 The OpenSSL Project Authors. All Rights Reserved.
    55. 

  55. 

  56. Licensed under the Apache License 2.0 (the "License").  You may not use
    57. 

  57. this file except in compliance with the License.  You can obtain a copy
    58. 

  58. in the file LICENSE in the source distribution or at
    59. 

  59. L<https://www.openssl.org/source/license.html>.
    60. 

  60. 

  61. =cut
    62.