[gnutls-devel] GnuTLS | improve documentation on certificate authentication (#540)

Development of GNU's TLS library gnutls-devel at lists.gnutls.org
Tue Aug 7 07:24:10 CEST 2018

New Issue was created.

Issue 540: https://gitlab.com/gnutls/gnutls/issues/540
Author:    Nikos Mavrogiannopoulos

Now the bits and pieces are all over the documentation but there is not a single section which can answer all the following:
 - [ ] how the CA trust store is set, system vs custom, system via p11-kit DB vs files
 - [ ] what do the verify functions cover (verification of signatures, checking for right name, checking against OCSP responses, CRL lists, blacklists in case of p11-kit DB, etc)
 - [ ] trust lists

We should re-organize and add documentation in order to provide an easy to read section for users to understand the current certificate validation subsystem.

Reply to this email directly or view it on GitLab: https://gitlab.com/gnutls/gnutls/issues/540
You're receiving this email because of your account on gitlab.com.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <https://lists.gnupg.org/pipermail/gnutls-devel/attachments/20180807/b19a93de/attachment-0001.html>

More information about the Gnutls-devel mailing list