diff options
author | Ingela Anderton Andin <[email protected]> | 2012-04-25 14:47:56 +0200 |
---|---|---|
committer | Ingela Anderton Andin <[email protected]> | 2012-04-25 14:47:56 +0200 |
commit | 6bc599855cf95b0f86883a956e443cab1d91291c (patch) | |
tree | 62c14bcb2e3448ae2e8b67beed09f5abcf4e2c76 /lib | |
parent | 33fe8806939849c47b8ec5de91b8e8ef94a9f1df (diff) | |
download | otp-6bc599855cf95b0f86883a956e443cab1d91291c.tar.gz otp-6bc599855cf95b0f86883a956e443cab1d91291c.tar.bz2 otp-6bc599855cf95b0f86883a956e443cab1d91291c.zip |
Improved explanation of depth option
Diffstat (limited to 'lib')
-rw-r--r-- | lib/ssl/doc/src/ssl.xml | 14 |
1 files changed, 7 insertions, 7 deletions
diff --git a/lib/ssl/doc/src/ssl.xml b/lib/ssl/doc/src/ssl.xml index e019654685..28bf82b406 100644 --- a/lib/ssl/doc/src/ssl.xml +++ b/lib/ssl/doc/src/ssl.xml @@ -193,13 +193,13 @@ </item> <tag>{depth, integer()}</tag> - <item>Specifies the maximum - verification depth, i.e. how far in a chain of certificates the - verification process can proceed before the verification is - considered to fail. Peer certificate = 0, CA certificate = 1, - higher level CA certificate = 2, etc. The value 2 thus means - that a chain can at most contain peer cert, CA cert, next CA - cert, and an additional CA cert. The default value is 1. + <item> + The depth is the maximum number of non-self-issued + intermediate certificates that may follow the peer certificate + in a valid certification path. So if depth is 0 the PEER must + be signed by the trusted ROOT-CA directly, if 1 the path can + be PEER, CA, ROOT-CA, if it is 2 PEER, CA, CA, ROOT-CA and so + on. The default value is 1. </item> <tag>{verify_fun, {Verifyfun :: fun(), InitialUserState :: term()}}</tag> |