diff options
author | daurnimator <quae@daurnimator.com> | 2019-06-07 18:09:54 +1000 |
---|---|---|
committer | daurnimator <quae@daurnimator.com> | 2019-06-11 15:39:06 +1000 |
commit | 6869810b4ec0c7241404ab5f7bb080417871d16e (patch) | |
tree | 0d220ea833d4dd4a7c4c1de8290dce41503cd2ac /doc | |
parent | feb050aeec4301f6febd576bf8321bd81eaf5e42 (diff) | |
download | luaossl-6869810b4ec0c7241404ab5f7bb080417871d16e.tar.gz luaossl-6869810b4ec0c7241404ab5f7bb080417871d16e.tar.bz2 luaossl-6869810b4ec0c7241404ab5f7bb080417871d16e.zip |
src/openssl.c: Add cert:verify() to verify a certificate without a store
Diffstat (limited to 'doc')
-rw-r--r-- | doc/luaossl.tex | 13 |
1 files changed, 13 insertions, 0 deletions
diff --git a/doc/luaossl.tex b/doc/luaossl.tex index 8561957..b874e89 100644 --- a/doc/luaossl.tex +++ b/doc/luaossl.tex @@ -597,6 +597,19 @@ Returns the type of signature used to sign the certificate as a string. e.g. ``R Signs and updates the instance certificate using the \module{openssl.pkey} $key$. $type$ is an optional string describing the digest type. See \module{pkey:sign}, regarding which types of digests are valid. If $type$ is omitted than a default type is used---``sha1'' for RSA keys, ``dss1'' for DSA keys, and ``ecdsa-with-SHA1'' for EC keys. +\subsubsection[\fn{x509:verify}]{\fn{x509:verify\{ $\ldots$ \}}} + +Verifies the certificate against to the specified parameters. + +\begin{ctabular}{ c | c | p{9cm}} +field & type & description\\\hline +.store & \module{openssl.x509.store} & The certificate store to verify against, any custom settings from the store will be used. \\ +.chain & \module{openssl.x509.chain} & A collection of additional certificates to consider \\ +.params & \module{openssl.x509.verify\_param} & The verification parameters to use; overrides any parameters in $.store$ +\end{ctabular} + +Returns two values. The first is a boolean value for whether the specified certificate $crt$ was verified. If true, the second value is a \module{openssl.x509.chain} object validation chain. If false, the second value is a string describing why verification failed. + \subsubsection[\fn{x509:text}]{\fn{x509:text()}} Returns a human-readable textual representation of the X.509 certificate. |