VCVRack
/
Rack
mirror of https://github.com/VCVRack/Rack.git
1
0
Fork 0
Code Issues 0 Releases 43 Wiki Activity
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
1346 Commits
4 Branches
540MB
Tree: 0cf549b2f7
Branches Tags
${ item.name }
Create branch ${ searchTerm }
from '0cf549b2f7'
${ noResults }
Rack/dep/include/openssl/ocsp.h

399 lines
17KB
Raw Blame History 

  1. /*

  2.  * Copyright 2000-2016 The OpenSSL Project Authors. All Rights Reserved.

  3.  *

  4.  * Licensed under the OpenSSL license (the "License").  You may not use

  5.  * this file except in compliance with the License.  You can obtain a copy

  6.  * in the file LICENSE in the source distribution or at

  7.  * https://www.openssl.org/source/license.html

  8.  */

  9. 

  10. #ifndef HEADER_OCSP_H

  11. # define HEADER_OCSP_H

  12. 

  13. #include <openssl/opensslconf.h>

  14. 

  15. /*

  16.  * These definitions are outside the OPENSSL_NO_OCSP guard because although for

  17.  * historical reasons they have OCSP_* names, they can actually be used

  18.  * independently of OCSP. E.g. see RFC5280

  19.  */

  20. /*-

  21.  *   CRLReason ::= ENUMERATED {

  22.  *        unspecified             (0),

  23.  *        keyCompromise           (1),

  24.  *        cACompromise            (2),

  25.  *        affiliationChanged      (3),

  26.  *        superseded              (4),

  27.  *        cessationOfOperation    (5),

  28.  *        certificateHold         (6),

  29.  *        removeFromCRL           (8) }

  30.  */

  31. #  define OCSP_REVOKED_STATUS_NOSTATUS               -1

  32. #  define OCSP_REVOKED_STATUS_UNSPECIFIED             0

  33. #  define OCSP_REVOKED_STATUS_KEYCOMPROMISE           1

  34. #  define OCSP_REVOKED_STATUS_CACOMPROMISE            2

  35. #  define OCSP_REVOKED_STATUS_AFFILIATIONCHANGED      3

  36. #  define OCSP_REVOKED_STATUS_SUPERSEDED              4

  37. #  define OCSP_REVOKED_STATUS_CESSATIONOFOPERATION    5

  38. #  define OCSP_REVOKED_STATUS_CERTIFICATEHOLD         6

  39. #  define OCSP_REVOKED_STATUS_REMOVEFROMCRL           8

  40. 

  41. 

  42. # ifndef OPENSSL_NO_OCSP

  43. 

  44. #  include <openssl/ossl_typ.h>

  45. #  include <openssl/x509.h>

  46. #  include <openssl/x509v3.h>

  47. #  include <openssl/safestack.h>

  48. 

  49. #ifdef  __cplusplus

  50. extern "C" {

  51. #endif

  52. 

  53. /* Various flags and values */

  54. 

  55. #  define OCSP_DEFAULT_NONCE_LENGTH       16

  56. 

  57. #  define OCSP_NOCERTS                    0x1

  58. #  define OCSP_NOINTERN                   0x2

  59. #  define OCSP_NOSIGS                     0x4

  60. #  define OCSP_NOCHAIN                    0x8

  61. #  define OCSP_NOVERIFY                   0x10

  62. #  define OCSP_NOEXPLICIT                 0x20

  63. #  define OCSP_NOCASIGN                   0x40

  64. #  define OCSP_NODELEGATED                0x80

  65. #  define OCSP_NOCHECKS                   0x100

  66. #  define OCSP_TRUSTOTHER                 0x200

  67. #  define OCSP_RESPID_KEY                 0x400

  68. #  define OCSP_NOTIME                     0x800

  69. 

  70. typedef struct ocsp_cert_id_st OCSP_CERTID;

  71. 

  72. DEFINE_STACK_OF(OCSP_CERTID)

  73. 

  74. typedef struct ocsp_one_request_st OCSP_ONEREQ;

  75. 

  76. DEFINE_STACK_OF(OCSP_ONEREQ)

  77. 

  78. typedef struct ocsp_req_info_st OCSP_REQINFO;

  79. typedef struct ocsp_signature_st OCSP_SIGNATURE;

  80. typedef struct ocsp_request_st OCSP_REQUEST;

  81. 

  82. #  define OCSP_RESPONSE_STATUS_SUCCESSFUL           0

  83. #  define OCSP_RESPONSE_STATUS_MALFORMEDREQUEST     1

  84. #  define OCSP_RESPONSE_STATUS_INTERNALERROR        2

  85. #  define OCSP_RESPONSE_STATUS_TRYLATER             3

  86. #  define OCSP_RESPONSE_STATUS_SIGREQUIRED          5

  87. #  define OCSP_RESPONSE_STATUS_UNAUTHORIZED         6

  88. 

  89. typedef struct ocsp_resp_bytes_st OCSP_RESPBYTES;

  90. 

  91. #  define V_OCSP_RESPID_NAME 0

  92. #  define V_OCSP_RESPID_KEY  1

  93. 

  94. DEFINE_STACK_OF(OCSP_RESPID)

  95. DECLARE_ASN1_FUNCTIONS(OCSP_RESPID)

  96. 

  97. typedef struct ocsp_revoked_info_st OCSP_REVOKEDINFO;

  98. 

  99. #  define V_OCSP_CERTSTATUS_GOOD    0

  100. #  define V_OCSP_CERTSTATUS_REVOKED 1

  101. #  define V_OCSP_CERTSTATUS_UNKNOWN 2

  102. 

  103. typedef struct ocsp_cert_status_st OCSP_CERTSTATUS;

  104. typedef struct ocsp_single_response_st OCSP_SINGLERESP;

  105. 

  106. DEFINE_STACK_OF(OCSP_SINGLERESP)

  107. 

  108. typedef struct ocsp_response_data_st OCSP_RESPDATA;

  109. 

  110. typedef struct ocsp_basic_response_st OCSP_BASICRESP;

  111. 

  112. typedef struct ocsp_crl_id_st OCSP_CRLID;

  113. typedef struct ocsp_service_locator_st OCSP_SERVICELOC;

  114. 

  115. #  define PEM_STRING_OCSP_REQUEST "OCSP REQUEST"

  116. #  define PEM_STRING_OCSP_RESPONSE "OCSP RESPONSE"

  117. 

  118. #  define d2i_OCSP_REQUEST_bio(bp,p) ASN1_d2i_bio_of(OCSP_REQUEST,OCSP_REQUEST_new,d2i_OCSP_REQUEST,bp,p)

  119. 

  120. #  define d2i_OCSP_RESPONSE_bio(bp,p) ASN1_d2i_bio_of(OCSP_RESPONSE,OCSP_RESPONSE_new,d2i_OCSP_RESPONSE,bp,p)

  121. 

  122. #  define PEM_read_bio_OCSP_REQUEST(bp,x,cb) (OCSP_REQUEST *)PEM_ASN1_read_bio( \

  123.      (char *(*)())d2i_OCSP_REQUEST,PEM_STRING_OCSP_REQUEST,bp,(char **)x,cb,NULL)

  124. 

  125. #   define PEM_read_bio_OCSP_RESPONSE(bp,x,cb)(OCSP_RESPONSE *)PEM_ASN1_read_bio(\

  126.      (char *(*)())d2i_OCSP_RESPONSE,PEM_STRING_OCSP_RESPONSE,bp,(char **)x,cb,NULL)

  127. 

  128. #  define PEM_write_bio_OCSP_REQUEST(bp,o) \

  129.     PEM_ASN1_write_bio((int (*)())i2d_OCSP_REQUEST,PEM_STRING_OCSP_REQUEST,\

  130.                         bp,(char *)o, NULL,NULL,0,NULL,NULL)

  131. 

  132. #  define PEM_write_bio_OCSP_RESPONSE(bp,o) \

  133.     PEM_ASN1_write_bio((int (*)())i2d_OCSP_RESPONSE,PEM_STRING_OCSP_RESPONSE,\

  134.                         bp,(char *)o, NULL,NULL,0,NULL,NULL)

  135. 

  136. #  define i2d_OCSP_RESPONSE_bio(bp,o) ASN1_i2d_bio_of(OCSP_RESPONSE,i2d_OCSP_RESPONSE,bp,o)

  137. 

  138. #  define i2d_OCSP_REQUEST_bio(bp,o) ASN1_i2d_bio_of(OCSP_REQUEST,i2d_OCSP_REQUEST,bp,o)

  139. 

  140. #  define ASN1_BIT_STRING_digest(data,type,md,len) \

  141.         ASN1_item_digest(ASN1_ITEM_rptr(ASN1_BIT_STRING),type,data,md,len)

  142. 

  143. #  define OCSP_CERTSTATUS_dup(cs)\

  144.                 (OCSP_CERTSTATUS*)ASN1_dup((int(*)())i2d_OCSP_CERTSTATUS,\

  145.                 (char *(*)())d2i_OCSP_CERTSTATUS,(char *)(cs))

  146. 

  147. OCSP_CERTID *OCSP_CERTID_dup(OCSP_CERTID *id);

  148. 

  149. OCSP_RESPONSE *OCSP_sendreq_bio(BIO *b, const char *path, OCSP_REQUEST *req);

  150. OCSP_REQ_CTX *OCSP_sendreq_new(BIO *io, const char *path, OCSP_REQUEST *req,

  151.                                int maxline);

  152. int OCSP_REQ_CTX_nbio(OCSP_REQ_CTX *rctx);

  153. int OCSP_sendreq_nbio(OCSP_RESPONSE **presp, OCSP_REQ_CTX *rctx);

  154. OCSP_REQ_CTX *OCSP_REQ_CTX_new(BIO *io, int maxline);

  155. void OCSP_REQ_CTX_free(OCSP_REQ_CTX *rctx);

  156. void OCSP_set_max_response_length(OCSP_REQ_CTX *rctx, unsigned long len);

  157. int OCSP_REQ_CTX_i2d(OCSP_REQ_CTX *rctx, const ASN1_ITEM *it,

  158.                      ASN1_VALUE *val);

  159. int OCSP_REQ_CTX_nbio_d2i(OCSP_REQ_CTX *rctx, ASN1_VALUE **pval,

  160.                           const ASN1_ITEM *it);

  161. BIO *OCSP_REQ_CTX_get0_mem_bio(OCSP_REQ_CTX *rctx);

  162. int OCSP_REQ_CTX_i2d(OCSP_REQ_CTX *rctx, const ASN1_ITEM *it,

  163.                      ASN1_VALUE *val);

  164. int OCSP_REQ_CTX_http(OCSP_REQ_CTX *rctx, const char *op, const char *path);

  165. int OCSP_REQ_CTX_set1_req(OCSP_REQ_CTX *rctx, OCSP_REQUEST *req);

  166. int OCSP_REQ_CTX_add1_header(OCSP_REQ_CTX *rctx,

  167.                              const char *name, const char *value);

  168. 

  169. OCSP_CERTID *OCSP_cert_to_id(const EVP_MD *dgst, const X509 *subject,

  170.                              const X509 *issuer);

  171. 

  172. OCSP_CERTID *OCSP_cert_id_new(const EVP_MD *dgst,

  173.                               const X509_NAME *issuerName,

  174.                               const ASN1_BIT_STRING *issuerKey,

  175.                               const ASN1_INTEGER *serialNumber);

  176. 

  177. OCSP_ONEREQ *OCSP_request_add0_id(OCSP_REQUEST *req, OCSP_CERTID *cid);

  178. 

  179. int OCSP_request_add1_nonce(OCSP_REQUEST *req, unsigned char *val, int len);

  180. int OCSP_basic_add1_nonce(OCSP_BASICRESP *resp, unsigned char *val, int len);

  181. int OCSP_check_nonce(OCSP_REQUEST *req, OCSP_BASICRESP *bs);

  182. int OCSP_copy_nonce(OCSP_BASICRESP *resp, OCSP_REQUEST *req);

  183. 

  184. int OCSP_request_set1_name(OCSP_REQUEST *req, X509_NAME *nm);

  185. int OCSP_request_add1_cert(OCSP_REQUEST *req, X509 *cert);

  186. 

  187. int OCSP_request_sign(OCSP_REQUEST *req,

  188.                       X509 *signer,

  189.                       EVP_PKEY *key,

  190.                       const EVP_MD *dgst,

  191.                       STACK_OF(X509) *certs, unsigned long flags);

  192. 

  193. int OCSP_response_status(OCSP_RESPONSE *resp);

  194. OCSP_BASICRESP *OCSP_response_get1_basic(OCSP_RESPONSE *resp);

  195. 

  196. const ASN1_OCTET_STRING *OCSP_resp_get0_signature(const OCSP_BASICRESP *bs);

  197. int OCSP_resp_get0_signer(OCSP_BASICRESP *bs, X509 **signer,

  198.                           STACK_OF(X509) *extra_certs);

  199. 

  200. int OCSP_resp_count(OCSP_BASICRESP *bs);

  201. OCSP_SINGLERESP *OCSP_resp_get0(OCSP_BASICRESP *bs, int idx);

  202. const ASN1_GENERALIZEDTIME *OCSP_resp_get0_produced_at(const OCSP_BASICRESP* bs);

  203. const STACK_OF(X509) *OCSP_resp_get0_certs(const OCSP_BASICRESP *bs);

  204. int OCSP_resp_get0_id(const OCSP_BASICRESP *bs,

  205.                       const ASN1_OCTET_STRING **pid,

  206.                       const X509_NAME **pname);

  207. 

  208. int OCSP_resp_find(OCSP_BASICRESP *bs, OCSP_CERTID *id, int last);

  209. int OCSP_single_get0_status(OCSP_SINGLERESP *single, int *reason,

  210.                             ASN1_GENERALIZEDTIME **revtime,

  211.                             ASN1_GENERALIZEDTIME **thisupd,

  212.                             ASN1_GENERALIZEDTIME **nextupd);

  213. int OCSP_resp_find_status(OCSP_BASICRESP *bs, OCSP_CERTID *id, int *status,

  214.                           int *reason,

  215.                           ASN1_GENERALIZEDTIME **revtime,

  216.                           ASN1_GENERALIZEDTIME **thisupd,

  217.                           ASN1_GENERALIZEDTIME **nextupd);

  218. int OCSP_check_validity(ASN1_GENERALIZEDTIME *thisupd,

  219.                         ASN1_GENERALIZEDTIME *nextupd, long sec, long maxsec);

  220. 

  221. int OCSP_request_verify(OCSP_REQUEST *req, STACK_OF(X509) *certs,

  222.                         X509_STORE *store, unsigned long flags);

  223. 

  224. int OCSP_parse_url(const char *url, char **phost, char **pport, char **ppath,

  225.                    int *pssl);

  226. 

  227. int OCSP_id_issuer_cmp(OCSP_CERTID *a, OCSP_CERTID *b);

  228. int OCSP_id_cmp(OCSP_CERTID *a, OCSP_CERTID *b);

  229. 

  230. int OCSP_request_onereq_count(OCSP_REQUEST *req);

  231. OCSP_ONEREQ *OCSP_request_onereq_get0(OCSP_REQUEST *req, int i);

  232. OCSP_CERTID *OCSP_onereq_get0_id(OCSP_ONEREQ *one);

  233. int OCSP_id_get0_info(ASN1_OCTET_STRING **piNameHash, ASN1_OBJECT **pmd,

  234.                       ASN1_OCTET_STRING **pikeyHash,

  235.                       ASN1_INTEGER **pserial, OCSP_CERTID *cid);

  236. int OCSP_request_is_signed(OCSP_REQUEST *req);

  237. OCSP_RESPONSE *OCSP_response_create(int status, OCSP_BASICRESP *bs);

  238. OCSP_SINGLERESP *OCSP_basic_add1_status(OCSP_BASICRESP *rsp,

  239.                                         OCSP_CERTID *cid,

  240.                                         int status, int reason,

  241.                                         ASN1_TIME *revtime,

  242.                                         ASN1_TIME *thisupd,

  243.                                         ASN1_TIME *nextupd);

  244. int OCSP_basic_add1_cert(OCSP_BASICRESP *resp, X509 *cert);

  245. int OCSP_basic_sign(OCSP_BASICRESP *brsp,

  246.                     X509 *signer, EVP_PKEY *key, const EVP_MD *dgst,

  247.                     STACK_OF(X509) *certs, unsigned long flags);

  248. int OCSP_RESPID_set_by_name(OCSP_RESPID *respid, X509 *cert);

  249. int OCSP_RESPID_set_by_key(OCSP_RESPID *respid, X509 *cert);

  250. int OCSP_RESPID_match(OCSP_RESPID *respid, X509 *cert);

  251. 

  252. X509_EXTENSION *OCSP_crlID_new(const char *url, long *n, char *tim);

  253. 

  254. X509_EXTENSION *OCSP_accept_responses_new(char **oids);

  255. 

  256. X509_EXTENSION *OCSP_archive_cutoff_new(char *tim);

  257. 

  258. X509_EXTENSION *OCSP_url_svcloc_new(X509_NAME *issuer, const char **urls);

  259. 

  260. int OCSP_REQUEST_get_ext_count(OCSP_REQUEST *x);

  261. int OCSP_REQUEST_get_ext_by_NID(OCSP_REQUEST *x, int nid, int lastpos);

  262. int OCSP_REQUEST_get_ext_by_OBJ(OCSP_REQUEST *x, const ASN1_OBJECT *obj,

  263.                                 int lastpos);

  264. int OCSP_REQUEST_get_ext_by_critical(OCSP_REQUEST *x, int crit, int lastpos);

  265. X509_EXTENSION *OCSP_REQUEST_get_ext(OCSP_REQUEST *x, int loc);

  266. X509_EXTENSION *OCSP_REQUEST_delete_ext(OCSP_REQUEST *x, int loc);

  267. void *OCSP_REQUEST_get1_ext_d2i(OCSP_REQUEST *x, int nid, int *crit,

  268.                                 int *idx);

  269. int OCSP_REQUEST_add1_ext_i2d(OCSP_REQUEST *x, int nid, void *value, int crit,

  270.                               unsigned long flags);

  271. int OCSP_REQUEST_add_ext(OCSP_REQUEST *x, X509_EXTENSION *ex, int loc);

  272. 

  273. int OCSP_ONEREQ_get_ext_count(OCSP_ONEREQ *x);

  274. int OCSP_ONEREQ_get_ext_by_NID(OCSP_ONEREQ *x, int nid, int lastpos);

  275. int OCSP_ONEREQ_get_ext_by_OBJ(OCSP_ONEREQ *x, const ASN1_OBJECT *obj, int lastpos);

  276. int OCSP_ONEREQ_get_ext_by_critical(OCSP_ONEREQ *x, int crit, int lastpos);

  277. X509_EXTENSION *OCSP_ONEREQ_get_ext(OCSP_ONEREQ *x, int loc);

  278. X509_EXTENSION *OCSP_ONEREQ_delete_ext(OCSP_ONEREQ *x, int loc);

  279. void *OCSP_ONEREQ_get1_ext_d2i(OCSP_ONEREQ *x, int nid, int *crit, int *idx);

  280. int OCSP_ONEREQ_add1_ext_i2d(OCSP_ONEREQ *x, int nid, void *value, int crit,

  281.                              unsigned long flags);

  282. int OCSP_ONEREQ_add_ext(OCSP_ONEREQ *x, X509_EXTENSION *ex, int loc);

  283. 

  284. int OCSP_BASICRESP_get_ext_count(OCSP_BASICRESP *x);

  285. int OCSP_BASICRESP_get_ext_by_NID(OCSP_BASICRESP *x, int nid, int lastpos);

  286. int OCSP_BASICRESP_get_ext_by_OBJ(OCSP_BASICRESP *x, const ASN1_OBJECT *obj,

  287.                                   int lastpos);

  288. int OCSP_BASICRESP_get_ext_by_critical(OCSP_BASICRESP *x, int crit,

  289.                                        int lastpos);

  290. X509_EXTENSION *OCSP_BASICRESP_get_ext(OCSP_BASICRESP *x, int loc);

  291. X509_EXTENSION *OCSP_BASICRESP_delete_ext(OCSP_BASICRESP *x, int loc);

  292. void *OCSP_BASICRESP_get1_ext_d2i(OCSP_BASICRESP *x, int nid, int *crit,

  293.                                   int *idx);

  294. int OCSP_BASICRESP_add1_ext_i2d(OCSP_BASICRESP *x, int nid, void *value,

  295.                                 int crit, unsigned long flags);

  296. int OCSP_BASICRESP_add_ext(OCSP_BASICRESP *x, X509_EXTENSION *ex, int loc);

  297. 

  298. int OCSP_SINGLERESP_get_ext_count(OCSP_SINGLERESP *x);

  299. int OCSP_SINGLERESP_get_ext_by_NID(OCSP_SINGLERESP *x, int nid, int lastpos);

  300. int OCSP_SINGLERESP_get_ext_by_OBJ(OCSP_SINGLERESP *x, const ASN1_OBJECT *obj,

  301.                                    int lastpos);

  302. int OCSP_SINGLERESP_get_ext_by_critical(OCSP_SINGLERESP *x, int crit,

  303.                                         int lastpos);

  304. X509_EXTENSION *OCSP_SINGLERESP_get_ext(OCSP_SINGLERESP *x, int loc);

  305. X509_EXTENSION *OCSP_SINGLERESP_delete_ext(OCSP_SINGLERESP *x, int loc);

  306. void *OCSP_SINGLERESP_get1_ext_d2i(OCSP_SINGLERESP *x, int nid, int *crit,

  307.                                    int *idx);

  308. int OCSP_SINGLERESP_add1_ext_i2d(OCSP_SINGLERESP *x, int nid, void *value,

  309.                                  int crit, unsigned long flags);

  310. int OCSP_SINGLERESP_add_ext(OCSP_SINGLERESP *x, X509_EXTENSION *ex, int loc);

  311. const OCSP_CERTID *OCSP_SINGLERESP_get0_id(const OCSP_SINGLERESP *x);

  312. 

  313. DECLARE_ASN1_FUNCTIONS(OCSP_SINGLERESP)

  314. DECLARE_ASN1_FUNCTIONS(OCSP_CERTSTATUS)

  315. DECLARE_ASN1_FUNCTIONS(OCSP_REVOKEDINFO)

  316. DECLARE_ASN1_FUNCTIONS(OCSP_BASICRESP)

  317. DECLARE_ASN1_FUNCTIONS(OCSP_RESPDATA)

  318. DECLARE_ASN1_FUNCTIONS(OCSP_RESPID)

  319. DECLARE_ASN1_FUNCTIONS(OCSP_RESPONSE)

  320. DECLARE_ASN1_FUNCTIONS(OCSP_RESPBYTES)

  321. DECLARE_ASN1_FUNCTIONS(OCSP_ONEREQ)

  322. DECLARE_ASN1_FUNCTIONS(OCSP_CERTID)

  323. DECLARE_ASN1_FUNCTIONS(OCSP_REQUEST)

  324. DECLARE_ASN1_FUNCTIONS(OCSP_SIGNATURE)

  325. DECLARE_ASN1_FUNCTIONS(OCSP_REQINFO)

  326. DECLARE_ASN1_FUNCTIONS(OCSP_CRLID)

  327. DECLARE_ASN1_FUNCTIONS(OCSP_SERVICELOC)

  328. 

  329. const char *OCSP_response_status_str(long s);

  330. const char *OCSP_cert_status_str(long s);

  331. const char *OCSP_crl_reason_str(long s);

  332. 

  333. int OCSP_REQUEST_print(BIO *bp, OCSP_REQUEST *a, unsigned long flags);

  334. int OCSP_RESPONSE_print(BIO *bp, OCSP_RESPONSE *o, unsigned long flags);

  335. 

  336. int OCSP_basic_verify(OCSP_BASICRESP *bs, STACK_OF(X509) *certs,

  337.                       X509_STORE *st, unsigned long flags);

  338. 

  339. /* BEGIN ERROR CODES */

  340. /*

  341.  * The following lines are auto generated by the script mkerr.pl. Any changes

  342.  * made after this point may be overwritten when the script is next run.

  343.  */

  344. 

  345. int ERR_load_OCSP_strings(void);

  346. 

  347. /* Error codes for the OCSP functions. */

  348. 

  349. /* Function codes. */

  350. # define OCSP_F_D2I_OCSP_NONCE                            102

  351. # define OCSP_F_OCSP_BASIC_ADD1_STATUS                    103

  352. # define OCSP_F_OCSP_BASIC_SIGN                           104

  353. # define OCSP_F_OCSP_BASIC_VERIFY                         105

  354. # define OCSP_F_OCSP_CERT_ID_NEW                          101

  355. # define OCSP_F_OCSP_CHECK_DELEGATED                      106

  356. # define OCSP_F_OCSP_CHECK_IDS                            107

  357. # define OCSP_F_OCSP_CHECK_ISSUER                         108

  358. # define OCSP_F_OCSP_CHECK_VALIDITY                       115

  359. # define OCSP_F_OCSP_MATCH_ISSUERID                       109

  360. # define OCSP_F_OCSP_PARSE_URL                            114

  361. # define OCSP_F_OCSP_REQUEST_SIGN                         110

  362. # define OCSP_F_OCSP_REQUEST_VERIFY                       116

  363. # define OCSP_F_OCSP_RESPONSE_GET1_BASIC                  111

  364. # define OCSP_F_PARSE_HTTP_LINE1                          118

  365. 

  366. /* Reason codes. */

  367. # define OCSP_R_CERTIFICATE_VERIFY_ERROR                  101

  368. # define OCSP_R_DIGEST_ERR                                102

  369. # define OCSP_R_ERROR_IN_NEXTUPDATE_FIELD                 122

  370. # define OCSP_R_ERROR_IN_THISUPDATE_FIELD                 123

  371. # define OCSP_R_ERROR_PARSING_URL                         121

  372. # define OCSP_R_MISSING_OCSPSIGNING_USAGE                 103

  373. # define OCSP_R_NEXTUPDATE_BEFORE_THISUPDATE              124

  374. # define OCSP_R_NOT_BASIC_RESPONSE                        104

  375. # define OCSP_R_NO_CERTIFICATES_IN_CHAIN                  105

  376. # define OCSP_R_NO_RESPONSE_DATA                          108

  377. # define OCSP_R_NO_REVOKED_TIME                           109

  378. # define OCSP_R_NO_SIGNER_KEY                             130

  379. # define OCSP_R_PRIVATE_KEY_DOES_NOT_MATCH_CERTIFICATE    110

  380. # define OCSP_R_REQUEST_NOT_SIGNED                        128

  381. # define OCSP_R_RESPONSE_CONTAINS_NO_REVOCATION_DATA      111

  382. # define OCSP_R_ROOT_CA_NOT_TRUSTED                       112

  383. # define OCSP_R_SERVER_RESPONSE_ERROR                     114

  384. # define OCSP_R_SERVER_RESPONSE_PARSE_ERROR               115

  385. # define OCSP_R_SIGNATURE_FAILURE                         117

  386. # define OCSP_R_SIGNER_CERTIFICATE_NOT_FOUND              118

  387. # define OCSP_R_STATUS_EXPIRED                            125

  388. # define OCSP_R_STATUS_NOT_YET_VALID                      126

  389. # define OCSP_R_STATUS_TOO_OLD                            127

  390. # define OCSP_R_UNKNOWN_MESSAGE_DIGEST                    119

  391. # define OCSP_R_UNKNOWN_NID                               120

  392. # define OCSP_R_UNSUPPORTED_REQUESTORNAME_TYPE            129

  393. 

  394. #  ifdef  __cplusplus

  395. }

  396. #  endif

  397. # endif

  398. #endif