#include <credentials/certificates/ocsp_request.h>
#include <credentials/certificates/ocsp_response.h>
#include <credentials/certificates/ocsp_single_response.h>
-#include <credentials/certificates/ocsp_responder.h>
/*
* Verifies the optional OCSP request signature generated by an OCSP requestor
certificate_t *cacert = NULL, *first_issuer = NULL;
ocsp_request_t *ocsp_request;
ocsp_status_t ocsp_status = OCSP_SUCCESSFUL;
- ocsp_responder_t *ocsp_responder = NULL;
linked_list_t *responses = NULL;
chunk_t encoding = chunk_empty, nonce = chunk_empty;
chunk_t issuerNameHash, issuerKeyHash, serialNumber;
DBG1(DBG_APP, "nonce: %#B", &nonce);
}
- /* check for an ocsp responder */
- if (op == OP_RESPOND)
- {
- ocsp_responder = lib->get(lib, "ocsp-responder");
- if (ocsp_responder)
- {
- lib->ocsp->add_responder(lib->ocsp, ocsp_responder);
- }
- }
-
/* enumerate over the ocsp requests and try to identify the issuers */
enumerator = ocsp_request->create_request_enumerator(ocsp_request);
while (enumerator->enumerate(enumerator, &hashAlgorithm, &issuerNameHash,
res = 0;
end:
- if (ocsp_responder)
- {
- lib->ocsp->remove_responder(lib->ocsp, ocsp_responder);
- }
DESTROY_IF(key);
lib->credmgr->remove_local_set(lib->credmgr, &creds->set);
creds->destroy(creds);