首页 发现 帮助
登录
OWEALs
/
openssl
镜像自地址 git://git.openssl.org/openssl.git
2
0
派生 0
文件 工单管理 1 Wiki
目录树: 6594baf645
分支列表 标签列表
openssl
/
doc
/
man7
/
ossl_store-file.pod

ossl_store-file.pod 2.3 KB
文件历史 原始文件

1234567891011121314151617181920212223242526272829303132333435363738394041424344454647484950515253545556575859606162636465666768697071 
  1. =pod
    2. 

  2. 

  3. =begin comment
    4. 

  4. 

  5. This is a recommended way to describe OSSL_STORE loaders,
    6. 

  6. "ossl_store-{name}", where {name} is replaced with the name of the
    7. 

  7. scheme it implements, in man section 7.
    8. 

  8. 

  9. =end comment
    10. 

  10. 

  11. =head1 NAME
    12. 

  12. 

  13. ossl_store-file - The store 'file' scheme loader
    14. 

  14. 

  15. =head1 SYNOPSIS
    16. 

  16. 

  17. =for openssl generic
    18. 

  18. 

  19. #include <openssl/store.h>
    20. 

  20. 

  21. =head1 DESCRIPTION
    22. 

  22. 

  23. Support for the 'file' scheme is built into C<libcrypto>.
    24. 

  24. Since files come in all kinds of formats and content types, the 'file'
    25. 

  25. scheme has its own layer of functionality called "file handlers",
    26. 

  26. which are used to try to decode diverse types of file contents.
    27. 

  27. 

  28. In case a file is formatted as PEM, each called file handler receives
    29. 

  29. the PEM name (everything following any 'C<-----BEGIN >') as well as
    30. 

  30. possible PEM headers, together with the decoded PEM body.  Since PEM
    31. 

  31. formatted files can contain more than one object, the file handlers
    32. 

  32. are called upon for each such object.
    33. 

  33. 

  34. If the file isn't determined to be formatted as PEM, the content is
    35. 

  35. loaded in raw form in its entirety and passed to the available file
    36. 

  36. handlers as is, with no PEM name or headers.
    37. 

  37. 

  38. Each file handler is expected to handle PEM and non-PEM content as
    39. 

  39. appropriate.  Some may refuse non-PEM content for the sake of
    40. 

  40. determinism (for example, there are keys out in the wild that are
    41. 

  41. represented as an ASN.1 OCTET STRING.  In raw form, it's not easily
    42. 

  42. possible to distinguish those from any other data coming as an ASN.1
    43. 

  43. OCTET STRING, so such keys would naturally be accepted as PEM files
    44. 

  44. only).
    45. 

  45. 

  46. =head1 NOTES
    47. 

  47. 

  48. When needed, the 'file' scheme loader will require a pass phrase by
    49. 

  49. using the B<UI_METHOD> that was passed via OSSL_STORE_open().
    50. 

  50. This pass phrase is expected to be UTF-8 encoded, anything else will
    51. 

  51. give an undefined result.
    52. 

  52. The files made accessible through this loader are expected to be
    53. 

  53. standard compliant with regards to pass phrase encoding.
    54. 

  54. Files that aren't should be re-generated with a correctly encoded pass
    55. 

  55. phrase.
    56. 

  56. See L<passphrase-encoding(7)> for more information.
    57. 

  57. 

  58. =head1 SEE ALSO
    59. 

  59. 

  60. L<ossl_store(7)>, L<passphrase-encoding(7)>
    61. 

  61. 

  62. =head1 COPYRIGHT
    63. 

  63. 

  64. Copyright 2018 The OpenSSL Project Authors. All Rights Reserved.
    65. 

  65. 

  66. Licensed under the Apache License 2.0 (the "License").  You may not use
    67. 

  67. this file except in compliance with the License.  You can obtain a copy
    68. 

  68. in the file LICENSE in the source distribution or at
    69. 

  69. L<https://www.openssl.org/source/license.html>.
    70. 

  70. 

  71. =cut
    72.