Functions
int	fr_tls_ocsp_check (request_t request, SSL ssl, X509_STORE store, X509 issuer_cert, X509 client_cert, fr_tls_ocsp_conf_t conf, bool staple_response)

int	fr_tls_ocsp_staple_cache_compile (fr_tls_cache_t sections, CONF_SECTION server_cs)

int	fr_tls_ocsp_staple_cb (SSL ssl, void data)

int	fr_tls_ocsp_state_cache_compile (fr_tls_cache_t sections, CONF_SECTION server_cs)

Data Structure Documentation

◆ fr_tls_ocsp_conf_t

struct fr_tls_ocsp_conf_t

OCSP Configuration.

Definition at line 4 of file ocsp.h.

Data Fields
fr_tls_cache_t	cache	Cached cache section pointers. Means we don't have to look them up at runtime.
char const *	cache_server	Virtual server to restore retrieved OCSP status.
bool	enable	Enable OCSP checks.
bool	override_url	Always use the configured OCSP URL even if the certificate contains one.
bool	softfail
X509_STORE *	store
uint32_t	timeout
char const *	url
bool	use_nonce
bool	verifycert

int fr_tls_ocsp_staple_cache_compile	(	fr_tls_cache_t *	sections,
		CONF_SECTION *	server_cs
	)

int fr_tls_ocsp_state_cache_compile	(	fr_tls_cache_t *	sections,
		CONF_SECTION *	server_cs
	)