ocsp_resp_validate.c
error_t ocspCheckResponderCert(const OcspResponderId *responderId, const X509CertInfo *responderCertInfo, const X509CertInfo *issuerCertInfo)
Check responder's certificate.
Definition: ocsp_resp_validate.c:248
X.509 certificate parsing.
error_t ocspCheckValidity(const OcspSingleResponse *singleResponse)
Check the validity interval of the OCSP response.
Definition: ocsp_resp_validate.c:427
error_t ocspCheckCertId(const OcspCertId *certId, const X509CertInfo *certInfo, const X509CertInfo *issuerCertInfo)
Check certificate identifier.
Definition: ocsp_resp_validate.c:357
error_t x509ValidateCertificate(const X509CertInfo *certInfo, const X509CertInfo *issuerCertInfo, uint_t pathLen)
X.509 certificate validation.
Definition: x509_cert_validate.c:54
OID (Object Identifier)
error_t x509ParseCertificate(const uint8_t *data, size_t length, X509CertInfo *certInfo)
Parse a X.509 certificate.
Definition: x509_cert_parse.c:56
void convertUnixTimeToDate(time_t t, DateTime *date)
Convert Unix timestamp to date.
Definition: date_time.c:198
error_t asn1ReadTag(const uint8_t *data, size_t length, Asn1Tag *tag)
Read an ASN.1 tag from the input stream.
Definition: asn1.c:52
OcspSingleResponse responses[OCSP_MAX_RESPONSES]
Definition: ocsp_common.h:255
int_t oidComp(const uint8_t *oid1, size_t oidLen1, const uint8_t *oid2, size_t oidLen2)
Compare object identifiers.
Definition: oid.c:103
error_t x509VerifySignature(const X509OctetString *tbsData, const X509SignAlgoId *signAlgoId, const X509SubjectPublicKeyInfo *publicKeyInfo, const X509OctetString *signature)
Certificate signature verification.
Definition: x509_sign_verify.c:78
bool_t x509CompareName(const uint8_t *name1, size_t nameLen1, const uint8_t *name2, size_t nameLen2)
Compare distinguished names.
Definition: x509_cert_validate.c:430
error_t sha1Compute(const void *data, size_t length, uint8_t *digest)
Digest a message using SHA-1.
Definition: efm32gg11_crypto_hash.c:55
const HashAlgo * ocspGetHashAlgo(const uint8_t *oid, size_t length)
Get the hash algorithm that matches the specified identifier.
Definition: ocsp_common.c:85
error_t ocspCheckNonce(const OcspExtensions *extensions, const uint8_t *nonce, size_t nonceLen)
Check nonce.
Definition: ocsp_resp_validate.c:483
error_t ocspCheckResponderId(const OcspResponderId *responderId, const X509CertInfo *issuerCertInfo)
Check responder identifier.
Definition: ocsp_resp_validate.c:291
RSA/DSA/ECDSA/EdDSA signature verification.
error_t ocspValidateResponse(const OcspResponse *response, const X509CertInfo *certInfo, const X509CertInfo *issuerCertInfo, const uint8_t *nonce, size_t nonceLen)
OCSP response validation.
Definition: ocsp_resp_validate.c:57
OcspExtensions responseExtensions
Definition: ocsp_common.h:256
OCSP response validation.
X.509 certificate validation.
X509OctetString rawSubjectPublicKey
Definition: x509_common.h:793
X509SubjectPublicKeyInfo subjectPublicKeyInfo
Definition: x509_common.h:1061
Debugging facilities.
ASN.1 (Abstract Syntax Notation One)
error_t ocspCheckResponseSignature(const OcspBasicResponse *basicResponse, const X509CertInfo *issuerCertInfo)
Verify response signature.
Definition: ocsp_resp_validate.c:130
int_t compareDateTime(const DateTime *date1, const DateTime *date2)
Compare dates.
Definition: date_time.c:304