ocsp 76 source4/heimdal/kdc/pkinit.c } ocsp;
ocsp 1156 source4/heimdal/kdc/pkinit.c if (ocsp.expire == 0 && ocsp.next_update > kdc_time) {
ocsp 1160 source4/heimdal/kdc/pkinit.c krb5_data_free(&ocsp.data);
ocsp 1162 source4/heimdal/kdc/pkinit.c ocsp.expire = 0;
ocsp 1163 source4/heimdal/kdc/pkinit.c ocsp.next_update = kdc_time + 60 * 5;
ocsp 1180 source4/heimdal/kdc/pkinit.c ret = krb5_data_alloc(&ocsp.data, sb.st_size);
ocsp 1187 source4/heimdal/kdc/pkinit.c ocsp.data.length = sb.st_size;
ocsp 1188 source4/heimdal/kdc/pkinit.c ret = read(fd, ocsp.data.data, sb.st_size);
ocsp 1200 source4/heimdal/kdc/pkinit.c ocsp.data.data, ocsp.data.length,
ocsp 1201 source4/heimdal/kdc/pkinit.c &ocsp.expire);
ocsp 1205 source4/heimdal/kdc/pkinit.c krb5_data_free(&ocsp.data);
ocsp 1206 source4/heimdal/kdc/pkinit.c ocsp.expire = 0;
ocsp 1207 source4/heimdal/kdc/pkinit.c } else if (ocsp.expire > 180) {
ocsp 1208 source4/heimdal/kdc/pkinit.c ocsp.expire -= 180; /* refetch the ocsp before it expire */
ocsp 1209 source4/heimdal/kdc/pkinit.c ocsp.next_update = ocsp.expire;
ocsp 1211 source4/heimdal/kdc/pkinit.c ocsp.next_update = kdc_time;
ocsp 1217 source4/heimdal/kdc/pkinit.c if (ocsp.expire != 0 && ocsp.expire > kdc_time) {
ocsp 1221 source4/heimdal/kdc/pkinit.c ocsp.data.data, ocsp.data.length);
ocsp 66 source4/heimdal/lib/hx509/revoke.c OCSPBasicOCSPResponse ocsp;
ocsp 125 source4/heimdal/lib/hx509/revoke.c free_ocsp(struct revoke_ocsp *ocsp)
ocsp 127 source4/heimdal/lib/hx509/revoke.c free(ocsp->path);
ocsp 128 source4/heimdal/lib/hx509/revoke.c free_OCSPBasicOCSPResponse(&ocsp->ocsp);
ocsp 129 source4/heimdal/lib/hx509/revoke.c hx509_certs_free(&ocsp->certs);
ocsp 130 source4/heimdal/lib/hx509/revoke.c hx509_cert_free(ocsp->signer);
ocsp 172 source4/heimdal/lib/hx509/revoke.c struct revoke_ocsp *ocsp,
ocsp 192 source4/heimdal/lib/hx509/revoke.c switch(ocsp->ocsp.tbsResponseData.responderID.element) {
ocsp 195 source4/heimdal/lib/hx509/revoke.c q.subject_name = &ocsp->ocsp.tbsResponseData.responderID.u.byName;
ocsp 199 source4/heimdal/lib/hx509/revoke.c q.keyhash_sha1 = &ocsp->ocsp.tbsResponseData.responderID.u.byKey;
ocsp 204 source4/heimdal/lib/hx509/revoke.c if (ret && ocsp->certs)
ocsp 205 source4/heimdal/lib/hx509/revoke.c ret = hx509_certs_find(context, ocsp->certs, &q, &signer);
ocsp 245 source4/heimdal/lib/hx509/revoke.c &ocsp->ocsp.signatureAlgorithm,
ocsp 246 source4/heimdal/lib/hx509/revoke.c &ocsp->ocsp.tbsResponseData._save,
ocsp 247 source4/heimdal/lib/hx509/revoke.c &ocsp->ocsp.signature);
ocsp 254 source4/heimdal/lib/hx509/revoke.c ocsp->signer = signer;
ocsp 327 source4/heimdal/lib/hx509/revoke.c load_ocsp(hx509_context context, struct revoke_ocsp *ocsp)
ocsp 336 source4/heimdal/lib/hx509/revoke.c ret = rk_undumpdata(ocsp->path, &data, &length);
ocsp 340 source4/heimdal/lib/hx509/revoke.c ret = stat(ocsp->path, &sb);
ocsp 376 source4/heimdal/lib/hx509/revoke.c ocsp->last_modfied = sb.st_mtime;
ocsp 378 source4/heimdal/lib/hx509/revoke.c free_OCSPBasicOCSPResponse(&ocsp->ocsp);
ocsp 379 source4/heimdal/lib/hx509/revoke.c hx509_certs_free(&ocsp->certs);
ocsp 380 source4/heimdal/lib/hx509/revoke.c hx509_cert_free(ocsp->signer);
ocsp 382 source4/heimdal/lib/hx509/revoke.c ocsp->ocsp = basic;
ocsp 383 source4/heimdal/lib/hx509/revoke.c ocsp->certs = certs;
ocsp 384 source4/heimdal/lib/hx509/revoke.c ocsp->signer = NULL;
ocsp 695 source4/heimdal/lib/hx509/revoke.c struct revoke_ocsp *ocsp = &ctx->ocsps.val[i];
ocsp 701 source4/heimdal/lib/hx509/revoke.c ret = stat(ocsp->path, &sb);
ocsp 702 source4/heimdal/lib/hx509/revoke.c if (ret == 0 && ocsp->last_modfied != sb.st_mtime) {
ocsp 703 source4/heimdal/lib/hx509/revoke.c ret = load_ocsp(context, ocsp);
ocsp 709 source4/heimdal/lib/hx509/revoke.c if (ocsp->signer == NULL) {
ocsp 710 source4/heimdal/lib/hx509/revoke.c ret = verify_ocsp(context, ocsp, now, certs, parent_cert);
ocsp 715 source4/heimdal/lib/hx509/revoke.c for (j = 0; j < ocsp->ocsp.tbsResponseData.responses.len; j++) {
ocsp 718 source4/heimdal/lib/hx509/revoke.c ret = der_heim_integer_cmp(&ocsp->ocsp.tbsResponseData.responses.val[j].certID.serialNumber,
ocsp 726 source4/heimdal/lib/hx509/revoke.c &ocsp->ocsp.tbsResponseData.responses.val[i].certID.hashAlgorithm,
ocsp 728 source4/heimdal/lib/hx509/revoke.c &ocsp->ocsp.tbsResponseData.responses.val[i].certID.issuerNameHash);
ocsp 737 source4/heimdal/lib/hx509/revoke.c &ocsp->ocsp.tbsResponseData.responses.val[j].certID.hashAlgorithm,
ocsp 739 source4/heimdal/lib/hx509/revoke.c &ocsp->ocsp.tbsResponseData.responses.val[j].certID.issuerKeyHash);
ocsp 743 source4/heimdal/lib/hx509/revoke.c switch (ocsp->ocsp.tbsResponseData.responses.val[j].certStatus.element) {
ocsp 756 source4/heimdal/lib/hx509/revoke.c if (ocsp->ocsp.tbsResponseData.responses.val[j].thisUpdate >
ocsp 761 source4/heimdal/lib/hx509/revoke.c if (ocsp->ocsp.tbsResponseData.responses.val[j].nextUpdate) {
ocsp 762 source4/heimdal/lib/hx509/revoke.c if (*ocsp->ocsp.tbsResponseData.responses.val[j].nextUpdate < now)
ocsp 1080 source4/heimdal/lib/hx509/revoke.c struct revoke_ocsp ocsp;
ocsp 1086 source4/heimdal/lib/hx509/revoke.c memset(&ocsp, 0, sizeof(ocsp));
ocsp 1088 source4/heimdal/lib/hx509/revoke.c ocsp.path = strdup(path);
ocsp 1089 source4/heimdal/lib/hx509/revoke.c if (ocsp.path == NULL)
ocsp 1092 source4/heimdal/lib/hx509/revoke.c ret = load_ocsp(context, &ocsp);
ocsp 1094 source4/heimdal/lib/hx509/revoke.c free_ocsp(&ocsp);
ocsp 1100 source4/heimdal/lib/hx509/revoke.c switch(ocsp.ocsp.tbsResponseData.responderID.element) {
ocsp 1104 source4/heimdal/lib/hx509/revoke.c _hx509_name_from_Name(&ocsp.ocsp.tbsResponseData.responderID.u.byName, &n);
ocsp 1113 source4/heimdal/lib/hx509/revoke.c hex_encode(ocsp.ocsp.tbsResponseData.responderID.u.byKey.data,
ocsp 1114 source4/heimdal/lib/hx509/revoke.c ocsp.ocsp.tbsResponseData.responderID.u.byKey.length,
ocsp 1126 source4/heimdal/lib/hx509/revoke.c printable_time(ocsp.ocsp.tbsResponseData.producedAt));
ocsp 1128 source4/heimdal/lib/hx509/revoke.c fprintf(out, "replies: %d\n", ocsp.ocsp.tbsResponseData.responses.len);
ocsp 1130 source4/heimdal/lib/hx509/revoke.c for (i = 0; i < ocsp.ocsp.tbsResponseData.responses.len; i++) {
ocsp 1132 source4/heimdal/lib/hx509/revoke.c switch (ocsp.ocsp.tbsResponseData.responses.val[i].certStatus.element) {
ocsp 1149 source4/heimdal/lib/hx509/revoke.c printable_time(ocsp.ocsp.tbsResponseData.responses.val[i].thisUpdate));
ocsp 1150 source4/heimdal/lib/hx509/revoke.c if (ocsp.ocsp.tbsResponseData.responses.val[i].nextUpdate)
ocsp 1152 source4/heimdal/lib/hx509/revoke.c printable_time(ocsp.ocsp.tbsResponseData.responses.val[i].thisUpdate));
ocsp 1157 source4/heimdal/lib/hx509/revoke.c if (ocsp.certs)
ocsp 1158 source4/heimdal/lib/hx509/revoke.c ret = hx509_certs_iter(context, ocsp.certs, hx509_ci_print_names, out);
ocsp 1160 source4/heimdal/lib/hx509/revoke.c free_ocsp(&ocsp);