package tls

You can search for identifiers within the package.

in-package search v0.2.0

Transport Layer Security purely in OCaml

Install

Dune Dependency

github.com Readme Changelog BSD-2-Clause License Edit opam file Versions (36)

Authors

Maintainers

Sources

tls-0.10.6.tbz

md5=fa5d1ae3e5c3ee09b515550f8d2ecdfa

sha256=36a61fcd4b08ae099538d9e71e8d24f518f5be4f735d0384c0e19da0496dbfb4

sha512=b36d2df5d8f5e1faffc26dbf486f59c90678f7dbd809cc770fd0f2fbb4b015fd634c50543be8522af0cbafd85bebbcb34579a34bdf149d5d8ed5fa253240db24

doc/tls.mirage/Tls_mirage/X509/index.html

Module `Tls_mirage.X509`

X.509 handling given a key value store and a clock

Parameters

module KV : Mirage_kv.RO

module C : Mirage_clock.PCLOCK

Signature

val authenticator : 
  ?hash_whitelist:Nocrypto.Hash.hash list ->
  ?crl:string ->
  KV.t ->
  [< `Noop | `CAs ] ->
  X509.Authenticator.t Lwt.t

authenticator ~hash_whitelist ~crl store typ creates an authenticator, either using the given certificate authorities in the store as value for key "ca_roots.crt", or null. If hash_whitelist is provided, only these hash algorithms are allowed for signatures of the certificate chain. If crl is provided, the corresponding file is read and used as revocation list (DER encoded). Both options only apply if `CAs is used.

val certificate : 
  KV.t ->
  [< `Default | `Name of string ] ->
  (X509.Certificate.t list * Nocrypto.Rsa.priv) Lwt.t

certificate store typ unmarshals a certificate chain and private key material from the store.

On This Page

Parameters
Signature