package ca-certs

  1. Overview
  2. Docs
package ca-certs
Legend:
Library
Module
Module type
Parameter
Class
Class type
val authenticator : ?crls:X509.CRL.t list -> ?allowed_hashes:Digestif.hash' list -> unit -> (X509.Authenticator.t, [> `Msg of string ]) Stdlib.result

authenticator ~crls ~allowed_hashes () detects the root CAs (trust anchors) in the operating system's trust store using trust_anchors. It constructs an authenticator with the current timestamp Ptime_clock.now, and the provided ~crls and ~allowed_hashes arguments. The resulting authenticator can be used for Tls.Config.client. Returns Error `Msg msg if detection did not succeed.

val trust_anchors : unit -> (string, [> `Msg of string ]) Stdlib.result

trust_anchors () detects the root CAs (trust anchors) in the operating system's trust store. On Unix systems, if the environment variable SSL_CERT_FILE is set, its value is used as path to the trust anchors. Otherwise, if NIX_SSL_CERT_FILE is set, its value is used. The successful result is a list of pem-encoded X509 certificates.

OCaml

Innovation. Community. Security.

GitHub Discord Twitter Peertube RSS
About
Changelog Releases Industrial Users Academic Users Why OCaml
Ecosystem
Packages Community Events OCaml Planet Jobs
Resources
Install OCaml Get Started Platform Tools Language Manual Standard Library API Books Exercises Papers OCaml Playground Logo
Policies
Carbon Footprint Governance Privacy Code of Conduct