diff options
author | Matt Caswell <matt@openssl.org> | 2015-09-22 17:05:17 +0100 |
---|---|---|
committer | Matt Caswell <matt@openssl.org> | 2015-09-25 14:49:59 +0100 |
commit | 631fb6af5f404e4f8b4ae33f3ffdcec81b9df19a (patch) | |
tree | edb673e21626cf9f78f80fc6bfc6b8047b936b0d /doc/ssl/SSL_CTX_load_verify_locations.pod | |
parent | d84a7b20e3ce61fc8eb4ea74b62579c803e0772f (diff) | |
download | openssl-631fb6af5f404e4f8b4ae33f3ffdcec81b9df19a.tar.gz |
Document the default CA path functions
Reviewed-by: Andy Polyakov <appro@openssl.org>
Diffstat (limited to 'doc/ssl/SSL_CTX_load_verify_locations.pod')
-rw-r--r-- | doc/ssl/SSL_CTX_load_verify_locations.pod | 24 |
1 files changed, 23 insertions, 1 deletions
diff --git a/doc/ssl/SSL_CTX_load_verify_locations.pod b/doc/ssl/SSL_CTX_load_verify_locations.pod index 8f7d627690..de388d3b50 100644 --- a/doc/ssl/SSL_CTX_load_verify_locations.pod +++ b/doc/ssl/SSL_CTX_load_verify_locations.pod @@ -12,12 +12,30 @@ certificates int SSL_CTX_load_verify_locations(SSL_CTX *ctx, const char *CAfile, const char *CApath); + int SSL_CTX_set_default_verify_paths(SSL_CTX *ctx); + + int SSL_CTX_set_default_verify_dir(SSL_CTX *ctx); + + int SSL_CTX_set_default_verify_file(SSL_CTX *ctx); + =head1 DESCRIPTION SSL_CTX_load_verify_locations() specifies the locations for B<ctx>, at which CA certificates for verification purposes are located. The certificates available via B<CAfile> and B<CApath> are trusted. +SSL_CTX_set_default_verify_paths() specifies that the default locations for +which CA certificates are loaded should be used. There is one default directory +and one default file. + +SSL_CTX_set_default_verify_dir() is similar to +SSL_CTX_set_default_verify_paths() except that just the default directory is +used. + +SSL_CTX_set_default_verify_file() is similar to +SSL_CTX_set_default_verify_paths() except that just the default file is +used. + =head1 NOTES If B<CAfile> is not NULL, it points to a file of CA certificates in PEM @@ -96,7 +114,7 @@ for use as B<CApath>: =head1 RETURN VALUES -The following return values can occur: +For SSL_CTX_load_verify_locations the following return values can occur: =over 4 @@ -112,6 +130,10 @@ The operation succeeded. =back +SSL_CTX_set_default_verify_paths(), SSL_CTX_set_default_verify_dir() and +SSL_CTX_set_default_verify_file() all return 1 on success or 0 on failure. A +missing default location is still treated as a success. + =head1 SEE ALSO L<ssl(3)>, |