Module: OpenSSL::OCSP

Defined in:

ext/openssl/ossl_ocsp.c

Defined Under Namespace

Classes: BasicResponse, CertificateId, OCSPError, Request, Response, SingleResponse

Constant Summary

RESPONSE_STATUS_INTERNALERROR =

Internal error in issuer

INT2NUM(OCSP_RESPONSE_STATUS_INTERNALERROR)

RESPONSE_STATUS_MALFORMEDREQUEST =

Illegal confirmation request

INT2NUM(OCSP_RESPONSE_STATUS_MALFORMEDREQUEST)

REVOKED_STATUS_NOSTATUS =

The certificate was revoked for an unknown reason

INT2NUM(OCSP_REVOKED_STATUS_NOSTATUS)

RESPONSE_STATUS_SIGREQUIRED =

You must sign the request and resubmit

INT2NUM(OCSP_RESPONSE_STATUS_SIGREQUIRED)

RESPONSE_STATUS_SUCCESSFUL =

Response has valid confirmations

INT2NUM(OCSP_RESPONSE_STATUS_SUCCESSFUL)

RESPONSE_STATUS_TRYLATER =

Try again later

INT2NUM(OCSP_RESPONSE_STATUS_TRYLATER)

REVOKED_STATUS_AFFILIATIONCHANGED =

The certificate subject’s name or other information changed

INT2NUM(OCSP_REVOKED_STATUS_AFFILIATIONCHANGED)

REVOKED_STATUS_CACOMPROMISE =

This CA certificate was revoked due to a key compromise

INT2NUM(OCSP_REVOKED_STATUS_CACOMPROMISE)

REVOKED_STATUS_CERTIFICATEHOLD =

The certificate is on hold

INT2NUM(OCSP_REVOKED_STATUS_CERTIFICATEHOLD)

REVOKED_STATUS_CESSATIONOFOPERATION =

The certificate is no longer needed

INT2NUM(OCSP_REVOKED_STATUS_CESSATIONOFOPERATION)

REVOKED_STATUS_KEYCOMPROMISE =

The certificate was revoked due to a key compromise

INT2NUM(OCSP_REVOKED_STATUS_KEYCOMPROMISE)

REVOKED_STATUS_REMOVEFROMCRL =

The certificate was previously on hold and should now be removed from the CRL

INT2NUM(OCSP_REVOKED_STATUS_REMOVEFROMCRL)

REVOKED_STATUS_SUPERSEDED =

The certificate was superseded by a new certificate

INT2NUM(OCSP_REVOKED_STATUS_SUPERSEDED)

RESPONSE_STATUS_UNAUTHORIZED =

Your request is unauthorized.

INT2NUM(OCSP_RESPONSE_STATUS_UNAUTHORIZED)

REVOKED_STATUS_UNSPECIFIED =

The certificate was revoked for an unspecified reason

INT2NUM(OCSP_REVOKED_STATUS_UNSPECIFIED)

NOCERTS =

Do not include certificates in the response

INT2NUM(OCSP_NOCERTS)

NOINTERN =

Do not search certificates contained in the response for a signer

INT2NUM(OCSP_NOINTERN)

NOSIGS =

Do not check the signature on the response

INT2NUM(OCSP_NOSIGS)

NOCHAIN =

Do not verify the certificate chain on the response

INT2NUM(OCSP_NOCHAIN)

NOVERIFY =

Do not verify the response at all

INT2NUM(OCSP_NOVERIFY)

NOEXPLICIT =

Do not check trust

INT2NUM(OCSP_NOEXPLICIT)

NOCASIGN =

(This flag is not used by OpenSSL 1.0.1g)

INT2NUM(OCSP_NOCASIGN)

NODELEGATED =

(This flag is not used by OpenSSL 1.0.1g)

INT2NUM(OCSP_NODELEGATED)

NOCHECKS =

Do not make additional signing certificate checks

INT2NUM(OCSP_NOCHECKS)

TRUSTOTHER =

Do not verify additional certificates

INT2NUM(OCSP_TRUSTOTHER)

RESPID_KEY =

Identify the response by signing the certificate key ID

INT2NUM(OCSP_RESPID_KEY)

NOTIME =

Do not include producedAt time in response

INT2NUM(OCSP_NOTIME)

V_CERTSTATUS_GOOD =

Indicates the certificate is not revoked but does not necessarily mean the certificate was issued or that this response is within the certificate’s validity interval

INT2NUM(V_OCSP_CERTSTATUS_GOOD)

V_CERTSTATUS_REVOKED =

Indicates the certificate has been revoked either permanently or temporarily (on hold).

INT2NUM(V_OCSP_CERTSTATUS_REVOKED)

V_CERTSTATUS_UNKNOWN =

Indicates the responder does not know about the certificate being requested.

INT2NUM(V_OCSP_CERTSTATUS_UNKNOWN)

V_RESPID_NAME =

The responder ID is based on the key name.

INT2NUM(V_OCSP_RESPID_NAME)

V_RESPID_KEY =

The responder ID is based on the public key.

INT2NUM(V_OCSP_RESPID_KEY)