Home
last modified time | relevance | path

Searched refs:ocsp (Results 1 – 25 of 59) sorted by relevance

123

/freebsd/crypto/heimdal/lib/hx509/
H A Drevoke.c65 OCSPBasicOCSPResponse ocsp; member
124 free_ocsp(struct revoke_ocsp *ocsp) in free_ocsp() argument
126 free(ocsp->path); in free_ocsp()
127 free_OCSPBasicOCSPResponse(&ocsp->ocsp); in free_ocsp()
128 hx509_certs_free(&ocsp->certs); in free_ocsp()
129 hx509_cert_free(ocsp->signer); in free_ocsp()
171 struct revoke_ocsp *ocsp, in verify_ocsp() argument
191 switch(ocsp->ocsp.tbsResponseData.responderID.element) { in verify_ocsp()
194 q.subject_name = &ocsp->ocsp.tbsResponseData.responderID.u.byName; in verify_ocsp()
198 q.keyhash_sha1 = &ocsp->ocsp.tbsResponseData.responderID.u.byKey; in verify_ocsp()
[all …]
H A Docsp.asn112 OCSPVersion ::= INTEGER { ocsp-v1(0) }
98 id-pkix-ocsp OBJECT IDENTIFIER ::= {
103 id-pkix-ocsp-basic OBJECT IDENTIFIER ::= { id-pkix-ocsp 1 }
104 id-pkix-ocsp-nonce OBJECT IDENTIFIER ::= { id-pkix-ocsp 2 }
105 -- id-pkix-ocsp-crl OBJECT IDENTIFIER ::= { id-pkix-ocsp 3 }
106 -- id-pkix-ocsp-response OBJECT IDENTIFIER ::= { id-pkix-ocsp 4 }
107 -- id-pkix-ocsp-nocheck OBJECT IDENTIFIER ::= { id-pkix-ocsp 5 }
108 -- id-pkix-ocsp-archive-cutoff OBJECT IDENTIFIER ::= { id-pkix-ocsp 6 }
109 -- id-pkix-ocsp-service-locator OBJECT IDENTIFIER ::= { id-pkix-ocsp 7 }
H A Dtest_chain.in124 ocsp:FILE:$srcdir/data/ocsp-resp1-ocsp.der > /dev/null || exit 1
130 ocsp:FILE:$srcdir/data/ocsp-resp1-ca.der > /dev/null || exit 1
136 ocsp:FILE:$srcdir/data/ocsp-resp1-ocsp-no-cert.der > /dev/null && exit 1
142 ocsp:FILE:$srcdir/data/ocsp-resp1-ocsp-no-cert.der \
143 chain:FILE:$srcdir/data/ocsp-responder.crt > /dev/null || exit 1
149 ocsp:FILE:$srcdir/data/ocsp-resp1-keyhash.der > /dev/null || exit 1
155 ocsp:FILE:$srcdir/data/ocsp-resp2.der > /dev/null && exit 1
157 for a in resp1-ocsp-no-cert resp1-ca resp1-keyhash resp2 ; do
159 ${hxtool} ocsp-print \
160 $srcdir/data/ocsp-${a}.der > /dev/null || exit 1
[all …]
H A DMakefile.am130 ocsp_asn1_files: $(ASN1_COMPILE_DEP) $(srcdir)/ocsp.asn1 $(srcdir)/ocsp.opt
131 …$(ASN1_COMPILE) --option-file=$(srcdir)/ocsp.opt $(srcdir)/ocsp.asn1 ocsp_asn1 || (rm -f ocsp_asn1…
312 ocsp.asn1 \
313 ocsp.opt \
368 data/ocsp-req1.der \
369 data/ocsp-req2.der \
370 data/ocsp-resp1-2.der \
371 data/ocsp-resp1-3.der \
372 data/ocsp-resp1-ca.der \
373 data/ocsp-resp1-keyhash.der \
[all …]
H A DChangeLog604 * test_chain.in: test ocsp-verify
611 * hxtool.c: New command ocsp-verify, check if ocsp contains all
614 * hxtool-commands.in: New command ocsp-verify.
1096 * ocsp.asn1: remove id-kp-OCSPSigning, its in rfc2459.asn1 now
1753 certificate in ocsp data-blob
1761 * revoke.c: Add the expiration time the crl/ocsp info expire
2014 * hxtool-commands.in: Add nonce flag to ocsp-fetch
2025 * hxtool-commands.in: New command "ocsp-print".
2031 (hx509_revoke_ocsp_print): new function, print ocsp reply
2091 * test_chain.in: test ocsp keyhash
[all …]
H A Dhxtool-commands.in354 name = "ocsp-fetch"
391 long = "ocsp-file"
395 name = "ocsp-verify"
401 name = "ocsp-print"
408 argument="ocsp-response-file ..."
H A DMakefile.in643 ocsp.asn1 \
644 ocsp.opt \
699 data/ocsp-req1.der \
700 data/ocsp-req2.der \
701 data/ocsp-resp1-2.der \
702 data/ocsp-resp1-3.der \
703 data/ocsp-resp1-ca.der \
704 data/ocsp-resp1-keyhash.der \
705 data/ocsp-resp1-ocsp-no-cert.der \
706 data/ocsp-resp1-ocsp.der \
[all …]
/freebsd/crypto/openssl/demos/certs/
H A Docspquery.sh11 $OPENSSL ocsp -issuer intca.pem -cert client.pem -CAfile root.pem \
13 $OPENSSL ocsp -issuer intca.pem -cert server.pem -CAfile root.pem \
15 $OPENSSL ocsp -issuer intca.pem -cert rev.pem -CAfile root.pem \
19 $OPENSSL ocsp -issuer intca.pem \
H A Docsprun.sh13 $OPENSSL ocsp -port $PORT -index index.txt -CA intca.pem \
/freebsd/crypto/heimdal/kdc/
H A Dpkinit.c88 } ocsp; variable
1495 if (ocsp.expire == 0 && ocsp.next_update > kdc_time) { in _kdc_pk_mk_pa_reply()
1499 krb5_data_free(&ocsp.data); in _kdc_pk_mk_pa_reply()
1501 ocsp.expire = 0; in _kdc_pk_mk_pa_reply()
1502 ocsp.next_update = kdc_time + 60 * 5; in _kdc_pk_mk_pa_reply()
1519 ret = krb5_data_alloc(&ocsp.data, sb.st_size); in _kdc_pk_mk_pa_reply()
1526 ocsp.data.length = sb.st_size; in _kdc_pk_mk_pa_reply()
1527 ret = read(fd, ocsp.data.data, sb.st_size); in _kdc_pk_mk_pa_reply()
1539 ocsp.data.data, ocsp.data.length, in _kdc_pk_mk_pa_reply()
1540 &ocsp.expire); in _kdc_pk_mk_pa_reply()
[all …]
/freebsd/contrib/unbound/contrib/ios/
H A Dopenssl.patch25 --- apps/ocsp.c
26 +++ apps/ocsp.c
/freebsd/contrib/wpa/src/utils/
H A Dhttp_curl.c61 } ocsp; member
1018 if (depth == 0 && ctx->ocsp != NO_OCSP && preverify_ok) { in curl_cb_ssl_verify()
1029 } else if (res != OCSP_GOOD && (ctx->ocsp == MANDATORY_OCSP)) { in curl_cb_ssl_verify()
1104 if (ctx->ocsp == MANDATORY_OCSP) in ocsp_resp_cb()
1106 return (ctx->ocsp == MANDATORY_OCSP) ? 0 : 1; in ocsp_resp_cb()
1229 (ctx->ocsp == MANDATORY_OCSP) ? "" : in ocsp_resp_cb()
1234 if (ctx->ocsp == MANDATORY_OCSP) in ocsp_resp_cb()
1237 return (ctx->ocsp == MANDATORY_OCSP) ? 0 : 1; in ocsp_resp_cb()
1261 if (ctx->ocsp == MANDATORY_OCSP) { in ocsp_resp_cb()
1303 if (ctx->ocsp != NO_OCSP) { in curl_cb_ssl()
[all …]
/freebsd/crypto/openssl/doc/man1/
H A Dopenssl-ocsp.pod.in6 openssl-ocsp - Online Certificate Status Protocol command
12 B<openssl> B<ocsp>
55 B<openssl> B<ocsp>
478 openssl ocsp -issuer issuer.pem -cert c1.pem -cert c2.pem -reqout req.der
480 Send a query to an OCSP responder with URL http://ocsp.myhost.com/ save the
483 openssl ocsp -issuer issuer.pem -cert c1.pem -cert c2.pem \
484 -url http://ocsp.myhost.com/ -resp_text -respout resp.der
488 openssl ocsp -respin resp.der -text -noverify
493 openssl ocsp -index demoCA/index.txt -port 8888 -rsigner rcert.pem -CA demoCA/cacert.pem
498 openssl ocsp -index demoCA/index.txt -port 8888 -rsigner rcert.pem -CA demoCA/cacert.pem
[all …]
H A Dopenssl-cmds.pod.in31 ocsp,
112 L<openssl-ocsp(1)>,
/freebsd/crypto/openssl/doc/man3/
H A DOCSP_sendreq_new.pod18 #include <openssl/ocsp.h>
71 OSSL_HTTP_REQ_CTX_set1_req(rctx, "application/ocsp-request", it, req)
75 OSSL_HTTP_REQ_CTX_set1_req(rctx, "application/ocsp-request",
/freebsd/crypto/openssl/
H A Dbuild.info33 include/openssl/ocsp.h \
62 GENERATE[include/openssl/ocsp.h]=include/openssl/ocsp.h.in
/freebsd/crypto/openssl/apps/
H A Dbuild.info25 IF[{- !$disabled{'ocsp'} -}]
26 $OPENSSLSRC=$OPENSSLSRC ocsp.c
/freebsd/contrib/wpa/src/eap_peer/
H A Deap_config.h277 int ocsp; member
/freebsd/crypto/openssl/fuzz/
H A Dbuild.info26 IF[{- !$disabled{"ocsp"} -}]
94 IF[{- !$disabled{"ocsp"} -}]
/freebsd/crypto/openssl/ssl/statem/
H A Dextensions_srvr.c341 sk_OCSP_RESPID_pop_free(s->ext.ocsp.ids, OCSP_RESPID_free); in tls_parse_ctos_status_request()
343 s->ext.ocsp.ids = sk_OCSP_RESPID_new_null(); in tls_parse_ctos_status_request()
344 if (s->ext.ocsp.ids == NULL) { in tls_parse_ctos_status_request()
349 s->ext.ocsp.ids = NULL; in tls_parse_ctos_status_request()
378 if (!sk_OCSP_RESPID_push(s->ext.ocsp.ids, id)) { in tls_parse_ctos_status_request()
395 sk_X509_EXTENSION_pop_free(s->ext.ocsp.exts, in tls_parse_ctos_status_request()
397 s->ext.ocsp.exts = in tls_parse_ctos_status_request()
399 if (s->ext.ocsp.exts == NULL || ext_data != PACKET_end(&exts)) { in tls_parse_ctos_status_request()
/freebsd/kerberos5/lib/libhx509/
H A DMakefile276 ${GEN_OCSP}: ocsp.asn1 ocsp.opt
/freebsd/secure/usr.bin/openssl/
H A DMakefile.man30 MAN+= openssl-ocsp.1
H A DMakefile19 SRCS+= lib/cmp_mock_srv.c list.c mac.c nseq.c ocsp.c openssl.c passwd.c
/freebsd/crypto/openssl/ssl/
H A Ds3_lib.c3530 *(STACK_OF(X509_EXTENSION) **)parg = s->ext.ocsp.exts; in ssl3_ctrl()
3535 s->ext.ocsp.exts = parg; in ssl3_ctrl()
3540 *(STACK_OF(OCSP_RESPID) **)parg = s->ext.ocsp.ids; in ssl3_ctrl()
3545 s->ext.ocsp.ids = parg; in ssl3_ctrl()
3550 *(unsigned char **)parg = s->ext.ocsp.resp; in ssl3_ctrl()
3551 if (s->ext.ocsp.resp_len == 0 in ssl3_ctrl()
3552 || s->ext.ocsp.resp_len > LONG_MAX) in ssl3_ctrl()
3554 return (long)s->ext.ocsp.resp_len; in ssl3_ctrl()
3557 OPENSSL_free(s->ext.ocsp.resp); in ssl3_ctrl()
3558 s->ext.ocsp.resp = parg; in ssl3_ctrl()
[all …]
/freebsd/contrib/wpa/wpa_supplicant/
H A Dconfig_file.c771 INTe(ocsp, cert.ocsp); in wpa_config_write_network()
772 INTe(ocsp2, phase2_cert.ocsp); in wpa_config_write_network()
773 INTe(machine_ocsp, machine_cert.ocsp); in wpa_config_write_network()
993 if (cred->ocsp) in wpa_config_write_cred()
994 fprintf(f, "\tocsp=%d\n", cred->ocsp); in wpa_config_write_cred()

123