OpenSSL.X509.Revocation
Description
An interface to Certificate Revocation List.
- data CRL
- data RevokedCertificate = RevokedCertificate {}
- newCRL :: IO CRL
- signCRL :: KeyPair key => CRL -> key -> Maybe Digest -> IO ()
- verifyCRL :: PublicKey key => CRL -> key -> IO VerifyStatus
- printCRL :: CRL -> IO String
- sortCRL :: CRL -> IO ()
- getVersion :: CRL -> IO Int
- setVersion :: CRL -> Int -> IO ()
- getLastUpdate :: CRL -> IO UTCTime
- setLastUpdate :: CRL -> UTCTime -> IO ()
- getNextUpdate :: CRL -> IO UTCTime
- setNextUpdate :: CRL -> UTCTime -> IO ()
- getIssuerName :: CRL -> Bool -> IO [(String, String)]
- setIssuerName :: CRL -> [(String, String)] -> IO ()
- getRevokedList :: CRL -> IO [RevokedCertificate]
- addRevoked :: CRL -> RevokedCertificate -> IO ()
Types
data RevokedCertificate Source
RevokedCertificate
Constructors
| RevokedCertificate | |
| Fields | |
Functions to manipulate revocation list
newCRLsignCRL) to actually use
 the revocation list. If you have any certificates to be listed, you
 must of course add them (see addRevoked) before signing the list.
- Version
-  See setVersion.
- Last Update
-  See setLastUpdate.
- Next Update
-  See setNextUpdate.
- Issuer Name
-  See setIssuerName.
Arguments
| :: KeyPair key | |
| => CRL | The revocation list to be signed. | 
| -> key | The private key to sign with. | 
| -> Maybe Digest | A hashing algorithm to use. If  | 
| -> IO () | 
signCRL
verifyCRL :: PublicKey key => CRL -> key -> IO VerifyStatusSource
verifyCRL
Accessors
getVersion :: CRL -> IO IntSource
getVersion crl
setVersion :: CRL -> Int -> IO ()Source
setVersion crl ver
getLastUpdate :: CRL -> IO UTCTimeSource
getLastUpdate crl
setLastUpdate :: CRL -> UTCTime -> IO ()Source
setLastUpdate crl utc
getNextUpdate :: CRL -> IO UTCTimeSource
getNextUpdate crl
setNextUpdate :: CRL -> UTCTime -> IO ()Source
setNextUpdate crl utc
getIssuerName :: CRL -> Bool -> IO [(String, String)]Source
getIssuerName crl wantLongNameOpenSSL.X509.getIssuerName of
 OpenSSL.X509.
setIssuerName :: CRL -> [(String, String)] -> IO ()Source
setIssuerName crl nameOpenSSL.X509.setIssuerName of OpenSSL.X509.
getRevokedList :: CRL -> IO [RevokedCertificate]Source
getRevokedList crl
addRevoked :: CRL -> RevokedCertificate -> IO ()Source
addRevoked crl revoked