upstream/openldap
1
0
Fork 0
mirror of https://git.openldap.org/openldap/openldap.git synced 2025-12-25 09:09:54 -05:00
Code Issues Projects Releases Packages Wiki Activity Actions

ITS#8753 Document LDAP_OPT_X_TLS_PEERKEY_HASH

Browse source
This commit is contained in:
Ondřej Kuzník 2022-02-11 13:58:05 +00:00 committed by Quanah Gibson-Mount
parent 76947f2608
commit a2a2ebba23
1 changed files with 11 additions and 0 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

11
doc/man/man3/ldap_get_option.3
View file

@ -880,6 +880,17 @@ must be
.BR "char **" ,
and its contents need to be freed by the caller using
.BR ldap_memfree (3).
.TP
.B LDAP_OPT_X_TLS_PEERKEY_HASH
Sets the (public) key that the application expects the peer to be using.
.B invalue
must be
.BR "const char *"
containing the base64 encoding of the expected peer's key or in the format
.B "<hashalg>:<peerkey hash base64 encoded>"
where as a TLS session is established, the library will hash the peer's key
with the provided hash algorithm and compare it with value provided and will
only allow the session to continue if they match.
.SH ERRORS
On success, the functions return
.BR LDAP_OPT_SUCCESS ,