ocsp 76 source4/heimdal/kdc/pkinit.c } ocsp; ocsp 1156 source4/heimdal/kdc/pkinit.c if (ocsp.expire == 0 && ocsp.next_update > kdc_time) { ocsp 1160 source4/heimdal/kdc/pkinit.c krb5_data_free(&ocsp.data); ocsp 1162 source4/heimdal/kdc/pkinit.c ocsp.expire = 0; ocsp 1163 source4/heimdal/kdc/pkinit.c ocsp.next_update = kdc_time + 60 * 5; ocsp 1180 source4/heimdal/kdc/pkinit.c ret = krb5_data_alloc(&ocsp.data, sb.st_size); ocsp 1187 source4/heimdal/kdc/pkinit.c ocsp.data.length = sb.st_size; ocsp 1188 source4/heimdal/kdc/pkinit.c ret = read(fd, ocsp.data.data, sb.st_size); ocsp 1200 source4/heimdal/kdc/pkinit.c ocsp.data.data, ocsp.data.length, ocsp 1201 source4/heimdal/kdc/pkinit.c &ocsp.expire); ocsp 1205 source4/heimdal/kdc/pkinit.c krb5_data_free(&ocsp.data); ocsp 1206 source4/heimdal/kdc/pkinit.c ocsp.expire = 0; ocsp 1207 source4/heimdal/kdc/pkinit.c } else if (ocsp.expire > 180) { ocsp 1208 source4/heimdal/kdc/pkinit.c ocsp.expire -= 180; /* refetch the ocsp before it expire */ ocsp 1209 source4/heimdal/kdc/pkinit.c ocsp.next_update = ocsp.expire; ocsp 1211 source4/heimdal/kdc/pkinit.c ocsp.next_update = kdc_time; ocsp 1217 source4/heimdal/kdc/pkinit.c if (ocsp.expire != 0 && ocsp.expire > kdc_time) { ocsp 1221 source4/heimdal/kdc/pkinit.c ocsp.data.data, ocsp.data.length); ocsp 66 source4/heimdal/lib/hx509/revoke.c OCSPBasicOCSPResponse ocsp; ocsp 125 source4/heimdal/lib/hx509/revoke.c free_ocsp(struct revoke_ocsp *ocsp) ocsp 127 source4/heimdal/lib/hx509/revoke.c free(ocsp->path); ocsp 128 source4/heimdal/lib/hx509/revoke.c free_OCSPBasicOCSPResponse(&ocsp->ocsp); ocsp 129 source4/heimdal/lib/hx509/revoke.c hx509_certs_free(&ocsp->certs); ocsp 130 source4/heimdal/lib/hx509/revoke.c hx509_cert_free(ocsp->signer); ocsp 172 source4/heimdal/lib/hx509/revoke.c struct revoke_ocsp *ocsp, ocsp 192 source4/heimdal/lib/hx509/revoke.c switch(ocsp->ocsp.tbsResponseData.responderID.element) { ocsp 195 source4/heimdal/lib/hx509/revoke.c q.subject_name = &ocsp->ocsp.tbsResponseData.responderID.u.byName; ocsp 199 source4/heimdal/lib/hx509/revoke.c q.keyhash_sha1 = &ocsp->ocsp.tbsResponseData.responderID.u.byKey; ocsp 204 source4/heimdal/lib/hx509/revoke.c if (ret && ocsp->certs) ocsp 205 source4/heimdal/lib/hx509/revoke.c ret = hx509_certs_find(context, ocsp->certs, &q, &signer); ocsp 245 source4/heimdal/lib/hx509/revoke.c &ocsp->ocsp.signatureAlgorithm, ocsp 246 source4/heimdal/lib/hx509/revoke.c &ocsp->ocsp.tbsResponseData._save, ocsp 247 source4/heimdal/lib/hx509/revoke.c &ocsp->ocsp.signature); ocsp 254 source4/heimdal/lib/hx509/revoke.c ocsp->signer = signer; ocsp 327 source4/heimdal/lib/hx509/revoke.c load_ocsp(hx509_context context, struct revoke_ocsp *ocsp) ocsp 336 source4/heimdal/lib/hx509/revoke.c ret = rk_undumpdata(ocsp->path, &data, &length); ocsp 340 source4/heimdal/lib/hx509/revoke.c ret = stat(ocsp->path, &sb); ocsp 376 source4/heimdal/lib/hx509/revoke.c ocsp->last_modfied = sb.st_mtime; ocsp 378 source4/heimdal/lib/hx509/revoke.c free_OCSPBasicOCSPResponse(&ocsp->ocsp); ocsp 379 source4/heimdal/lib/hx509/revoke.c hx509_certs_free(&ocsp->certs); ocsp 380 source4/heimdal/lib/hx509/revoke.c hx509_cert_free(ocsp->signer); ocsp 382 source4/heimdal/lib/hx509/revoke.c ocsp->ocsp = basic; ocsp 383 source4/heimdal/lib/hx509/revoke.c ocsp->certs = certs; ocsp 384 source4/heimdal/lib/hx509/revoke.c ocsp->signer = NULL; ocsp 695 source4/heimdal/lib/hx509/revoke.c struct revoke_ocsp *ocsp = &ctx->ocsps.val[i]; ocsp 701 source4/heimdal/lib/hx509/revoke.c ret = stat(ocsp->path, &sb); ocsp 702 source4/heimdal/lib/hx509/revoke.c if (ret == 0 && ocsp->last_modfied != sb.st_mtime) { ocsp 703 source4/heimdal/lib/hx509/revoke.c ret = load_ocsp(context, ocsp); ocsp 709 source4/heimdal/lib/hx509/revoke.c if (ocsp->signer == NULL) { ocsp 710 source4/heimdal/lib/hx509/revoke.c ret = verify_ocsp(context, ocsp, now, certs, parent_cert); ocsp 715 source4/heimdal/lib/hx509/revoke.c for (j = 0; j < ocsp->ocsp.tbsResponseData.responses.len; j++) { ocsp 718 source4/heimdal/lib/hx509/revoke.c ret = der_heim_integer_cmp(&ocsp->ocsp.tbsResponseData.responses.val[j].certID.serialNumber, ocsp 726 source4/heimdal/lib/hx509/revoke.c &ocsp->ocsp.tbsResponseData.responses.val[i].certID.hashAlgorithm, ocsp 728 source4/heimdal/lib/hx509/revoke.c &ocsp->ocsp.tbsResponseData.responses.val[i].certID.issuerNameHash); ocsp 737 source4/heimdal/lib/hx509/revoke.c &ocsp->ocsp.tbsResponseData.responses.val[j].certID.hashAlgorithm, ocsp 739 source4/heimdal/lib/hx509/revoke.c &ocsp->ocsp.tbsResponseData.responses.val[j].certID.issuerKeyHash); ocsp 743 source4/heimdal/lib/hx509/revoke.c switch (ocsp->ocsp.tbsResponseData.responses.val[j].certStatus.element) { ocsp 756 source4/heimdal/lib/hx509/revoke.c if (ocsp->ocsp.tbsResponseData.responses.val[j].thisUpdate > ocsp 761 source4/heimdal/lib/hx509/revoke.c if (ocsp->ocsp.tbsResponseData.responses.val[j].nextUpdate) { ocsp 762 source4/heimdal/lib/hx509/revoke.c if (*ocsp->ocsp.tbsResponseData.responses.val[j].nextUpdate < now) ocsp 1080 source4/heimdal/lib/hx509/revoke.c struct revoke_ocsp ocsp; ocsp 1086 source4/heimdal/lib/hx509/revoke.c memset(&ocsp, 0, sizeof(ocsp)); ocsp 1088 source4/heimdal/lib/hx509/revoke.c ocsp.path = strdup(path); ocsp 1089 source4/heimdal/lib/hx509/revoke.c if (ocsp.path == NULL) ocsp 1092 source4/heimdal/lib/hx509/revoke.c ret = load_ocsp(context, &ocsp); ocsp 1094 source4/heimdal/lib/hx509/revoke.c free_ocsp(&ocsp); ocsp 1100 source4/heimdal/lib/hx509/revoke.c switch(ocsp.ocsp.tbsResponseData.responderID.element) { ocsp 1104 source4/heimdal/lib/hx509/revoke.c _hx509_name_from_Name(&ocsp.ocsp.tbsResponseData.responderID.u.byName, &n); ocsp 1113 source4/heimdal/lib/hx509/revoke.c hex_encode(ocsp.ocsp.tbsResponseData.responderID.u.byKey.data, ocsp 1114 source4/heimdal/lib/hx509/revoke.c ocsp.ocsp.tbsResponseData.responderID.u.byKey.length, ocsp 1126 source4/heimdal/lib/hx509/revoke.c printable_time(ocsp.ocsp.tbsResponseData.producedAt)); ocsp 1128 source4/heimdal/lib/hx509/revoke.c fprintf(out, "replies: %d\n", ocsp.ocsp.tbsResponseData.responses.len); ocsp 1130 source4/heimdal/lib/hx509/revoke.c for (i = 0; i < ocsp.ocsp.tbsResponseData.responses.len; i++) { ocsp 1132 source4/heimdal/lib/hx509/revoke.c switch (ocsp.ocsp.tbsResponseData.responses.val[i].certStatus.element) { ocsp 1149 source4/heimdal/lib/hx509/revoke.c printable_time(ocsp.ocsp.tbsResponseData.responses.val[i].thisUpdate)); ocsp 1150 source4/heimdal/lib/hx509/revoke.c if (ocsp.ocsp.tbsResponseData.responses.val[i].nextUpdate) ocsp 1152 source4/heimdal/lib/hx509/revoke.c printable_time(ocsp.ocsp.tbsResponseData.responses.val[i].thisUpdate)); ocsp 1157 source4/heimdal/lib/hx509/revoke.c if (ocsp.certs) ocsp 1158 source4/heimdal/lib/hx509/revoke.c ret = hx509_certs_iter(context, ocsp.certs, hx509_ci_print_names, out); ocsp 1160 source4/heimdal/lib/hx509/revoke.c free_ocsp(&ocsp);