diff options
author | Nikos Mavrogiannopoulos <nmav@gnutls.org> | 2012-09-30 16:34:32 +0200 |
---|---|---|
committer | Nikos Mavrogiannopoulos <nmav@gnutls.org> | 2012-09-30 17:27:49 +0200 |
commit | 6174e84cdd5734aff7fc5b1b9818716c540845fd (patch) | |
tree | 434b45013a8d9e81f1bd46db678a6b8c2ed1dc27 /doc/cha-cert-auth2.texi | |
parent | 946ea95e6f3ac2a9dad38d8f64eeee2956279a47 (diff) | |
download | gnutls-6174e84cdd5734aff7fc5b1b9818716c540845fd.tar.gz |
documented gnutls_ocsp_resp_check_crt().
Diffstat (limited to 'doc/cha-cert-auth2.texi')
-rw-r--r-- | doc/cha-cert-auth2.texi | 5 |
1 files changed, 3 insertions, 2 deletions
diff --git a/doc/cha-cert-auth2.texi b/doc/cha-cert-auth2.texi index 9e4baba12d..fa6c55d179 100644 --- a/doc/cha-cert-auth2.texi +++ b/doc/cha-cert-auth2.texi @@ -283,9 +283,10 @@ automatically parsed when an OCSP Response is imported. @showfuncE{gnutls_ocsp_resp_init,gnutls_ocsp_resp_deinit,gnutls_ocsp_resp_import,gnutls_ocsp_resp_export,gnutls_ocsp_resp_print} The OCSP response needs to be verified against some set of trust -anchors before it can be relied upon. +anchors before it can be relied upon, and it is wise to check whether +the OCSP response corresponds to the certificate being checked. -@showfuncB{gnutls_ocsp_resp_verify,gnutls_ocsp_resp_verify_direct} +@showfuncC{gnutls_ocsp_resp_verify,gnutls_ocsp_resp_verify_direct,gnutls_ocsp_resp_check_crt} @node Managing encrypted keys @section Managing encrypted keys |