openssl-ocsp.pod.in - OpenGrok cross reference for /freebsd/crypto/openssl/doc/man1/openssl-ocsp.pod.in

Lines Matching full:responder
84 to an OCSP responder and behave like a mini OCSP server itself.
173 Specify the responder host and optionally port and path via a URL.
212 that is sent to the responder.
217 Connection timeout to the OCSP responder in seconds.
218 On POSIX systems, when running as an OCSP responder, this option also limits
219 the time that the responder is willing to wait for the client request.
220 This time is measured from the time the responder accepts the connection until
236 when the complete responder certificate chain is not available or trusting a
241 File or URI containing explicitly trusted responder certificates.
291 seconds. In practice the OCSP responder and clients clocks may not be precisely
332 responder mode, otherwise it is in client mode. The request(s) the responder
398 a malformed response is received. When acting as an OCSP responder, continue
407 Run the specified number of OCSP responder child processes, with the parent
411 When running as a responder B<-timeout> option is recommended to limit the time
429 Initially the OCSP responder certificate is located and the signature on
430 the OCSP request checked using the responder certificate's public key.
432 Then a normal certificate verify is performed on the OCSP responder certificate
442 responder certificate: if there is a match then the OCSP verify succeeds.
444 Otherwise the OCSP responder certificate's CA is checked against the issuing
446 extended key usage is present in the OCSP responder certificate then the
455 What this effectively means if that if the OCSP responder certificate is
459 If the OCSP responder is a "global responder" which can give details about
465 Alternatively the responder certificate itself can be explicitly trusted
471 Normally only the B<-CApath>, B<-CAfile>, B<-CAstore> and (if the responder
475 not really usable as a full OCSP responder. It contains only a very
482 It is possible to run this command in responder mode via a CGI
491 Send a query to an OCSP responder with URL http://ocsp.myhost.com/ save the
502 responder certificate. All requests and responses are printed to a file.