xref: /netbsd-src/crypto/external/bsd/openssl/lib/libcrypto/man/TS_VERIFY_CTX_set_certs.3 (revision 7d9ffdb3e9da593a05c5e2169f72fc7bada08bc9) 
 $NetBSD: TS_VERIFY_CTX_set_certs.3,v 1.5 2024/09/08 13:08:36 christos Exp $

 -*- mode: troff; coding: utf-8 -*-
 Automatically generated by Pod::Man 5.01 (Pod::Simple 3.43)

 Standard preamble:
 ========================================================================
..

..


..
 \*(C` and \*(C' are quotes in nroff, nothing in troff, for use with C<>.
. ds C` ""
. ds C' ""
'br\}
. ds C`
. ds C'
'br\}

 Escape single quotes in literal strings from groff's Unicode transform.

 If the F register is >0, we'll generate index entries on stderr for
 titles (.TH), headers (.SH), subsections (.SS), items (.Ip), and index
 entries marked with X<> in POD. Of course, you'll have to process the
 output yourself in some meaningful fashion.

 Avoid warning from groff about undefined register 'F'.
..
.nr rF 0
. if \nF \{\
. de IX
. tm Index:\\$1\t\\n%\t"\\$2"
..
. if !\nF==2 \{\
. nr % 0
. nr F 2
. \}
. \}
.\}
.rr rF
 ========================================================================

 Title "TS_VERIFY_CTX_set_certs 3" 
 TS_VERIFY_CTX_set_certs 3 2024-09-03 3.0.15 OpenSSL
 For nroff, turn off justification. Always turn off hyphenation; it makes
 way too many mistakes in technical documents.
 NAME
TS_VERIFY_CTX_set_certs, TS_VERIFY_CTS_set_certs
\- set certificates for TS response verification

 SYNOPSIS
 Header "SYNOPSIS" .Vb 1
 #include <openssl/ts.h>
\&
 STACK_OF(X509) *TS_VERIFY_CTX_set_certs(TS_VERIFY_CTX *ctx,
  STACK_OF(X509) *certs);
 STACK_OF(X509) *TS_VERIFY_CTS_set_certs(TS_VERIFY_CTX *ctx,
  STACK_OF(X509) *certs);
.Ve

 DESCRIPTION
 Header "DESCRIPTION" The Time-Stamp Protocol (TSP) is defined by RFC 3161. TSP is a protocol used to
provide long term proof of the existence of a certain datum before a particular
time. TSP defines a Time Stamping Authority (TSA) and an entity who shall make
requests to the TSA. Usually the TSA is denoted as the server side and the
requesting entity is denoted as the client.


In TSP, when a server is sending a response to a client, the server normally
needs to sign the response data - the TimeStampToken (TST) - with its private
key. Then the client shall verify the received TST by the server's certificate
chain.


\fBTS_VERIFY_CTX_set_certs() is used to set the server's certificate chain when
verifying a TST. ctx is the verification context created in advance and
\fBcerts is a stack of X509 certificates.


\fBTS_VERIFY_CTS_set_certs() is a misspelled version of TS_VERIFY_CTX_set_certs()
which takes the same parameters and returns the same result.

 "RETURN VALUES"
 Header "RETURN VALUES" \fBTS_VERIFY_CTX_set_certs() returns the stack of X509 certificates the user
passes in via parameter certs.

 "SEE ALSO"
 Header "SEE ALSO" \fBOSSL_ESS_check_signing_certs\|(3)

 HISTORY
 Header "HISTORY" The spelling of TS_VERIFY_CTX_set_certs() was corrected in OpenSSL 3.0.0.
The misspelled version TS_VERIFY_CTS_set_certs() has been retained for
compatibility reasons, but it is deprecated in OpenSSL 3.0.0.

 COPYRIGHT
 Header "COPYRIGHT" Copyright 2019-2021 The OpenSSL Project Authors. All Rights Reserved.


Licensed under the Apache License 2.0 (the "License"). You may not use
this file except in compliance with the License. You can obtain a copy
in the file LICENSE in the source distribution or at
<https://www.openssl.org/source/license.html>.