Module: OpenSSL::OCSP

Defined in:
ext/openssl/ossl_ocsp.c

Defined Under Namespace

Classes: BasicResponse, CertificateId, OCSPError, Request, Response, SingleResponse

Constant Summary collapse

RESPONSE_STATUS_INTERNALERROR =

Internal error in issuer

INT2NUM(OCSP_RESPONSE_STATUS_INTERNALERROR)
RESPONSE_STATUS_MALFORMEDREQUEST =

Illegal confirmation request

INT2NUM(OCSP_RESPONSE_STATUS_MALFORMEDREQUEST)
REVOKED_STATUS_NOSTATUS =

The certificate was revoked for an unknown reason

INT2NUM(OCSP_REVOKED_STATUS_NOSTATUS)
RESPONSE_STATUS_SIGREQUIRED =

You must sign the request and resubmit

INT2NUM(OCSP_RESPONSE_STATUS_SIGREQUIRED)
RESPONSE_STATUS_SUCCESSFUL =

Response has valid confirmations

INT2NUM(OCSP_RESPONSE_STATUS_SUCCESSFUL)
RESPONSE_STATUS_TRYLATER =

Try again later

INT2NUM(OCSP_RESPONSE_STATUS_TRYLATER)
REVOKED_STATUS_AFFILIATIONCHANGED =

The certificate subject’s name or other information changed

INT2NUM(OCSP_REVOKED_STATUS_AFFILIATIONCHANGED)
REVOKED_STATUS_CACOMPROMISE =

This CA certificate was revoked due to a key compromise

INT2NUM(OCSP_REVOKED_STATUS_CACOMPROMISE)
REVOKED_STATUS_CERTIFICATEHOLD =

The certificate is on hold

INT2NUM(OCSP_REVOKED_STATUS_CERTIFICATEHOLD)
REVOKED_STATUS_CESSATIONOFOPERATION =

The certificate is no longer needed

INT2NUM(OCSP_REVOKED_STATUS_CESSATIONOFOPERATION)
REVOKED_STATUS_KEYCOMPROMISE =

The certificate was revoked due to a key compromise

INT2NUM(OCSP_REVOKED_STATUS_KEYCOMPROMISE)
REVOKED_STATUS_REMOVEFROMCRL =

The certificate was previously on hold and should now be removed from the CRL

INT2NUM(OCSP_REVOKED_STATUS_REMOVEFROMCRL)
REVOKED_STATUS_SUPERSEDED =

The certificate was superseded by a new certificate

INT2NUM(OCSP_REVOKED_STATUS_SUPERSEDED)
RESPONSE_STATUS_UNAUTHORIZED =

Your request is unauthorized.

INT2NUM(OCSP_RESPONSE_STATUS_UNAUTHORIZED)
REVOKED_STATUS_UNSPECIFIED =

The certificate was revoked for an unspecified reason

INT2NUM(OCSP_REVOKED_STATUS_UNSPECIFIED)
NOCERTS =

Do not include certificates in the response

INT2NUM(OCSP_NOCERTS)
NOINTERN =

Do not search certificates contained in the response for a signer

INT2NUM(OCSP_NOINTERN)
NOSIGS =

Do not check the signature on the response

INT2NUM(OCSP_NOSIGS)
NOCHAIN =

Do not verify the certificate chain on the response

INT2NUM(OCSP_NOCHAIN)
NOVERIFY =

Do not verify the response at all

INT2NUM(OCSP_NOVERIFY)
NOEXPLICIT =

Do not check trust

INT2NUM(OCSP_NOEXPLICIT)
NOCASIGN =

(This flag is not used by OpenSSL 1.0.1g)

INT2NUM(OCSP_NOCASIGN)
NODELEGATED =

(This flag is not used by OpenSSL 1.0.1g)

INT2NUM(OCSP_NODELEGATED)
NOCHECKS =

Do not make additional signing certificate checks

INT2NUM(OCSP_NOCHECKS)
TRUSTOTHER =

Do not verify additional certificates

INT2NUM(OCSP_TRUSTOTHER)
RESPID_KEY =

Identify the response by signing the certificate key ID

INT2NUM(OCSP_RESPID_KEY)
NOTIME =

Do not include producedAt time in response

INT2NUM(OCSP_NOTIME)
V_CERTSTATUS_GOOD =

Indicates the certificate is not revoked but does not necessarily mean the certificate was issued or that this response is within the certificate’s validity interval

INT2NUM(V_OCSP_CERTSTATUS_GOOD)
V_CERTSTATUS_REVOKED =

Indicates the certificate has been revoked either permanently or temporarily (on hold).

INT2NUM(V_OCSP_CERTSTATUS_REVOKED)
V_CERTSTATUS_UNKNOWN =

Indicates the responder does not know about the certificate being requested.

INT2NUM(V_OCSP_CERTSTATUS_UNKNOWN)
V_RESPID_NAME =

The responder ID is based on the key name.

INT2NUM(V_OCSP_RESPID_NAME)
V_RESPID_KEY =

The responder ID is based on the public key.

INT2NUM(V_OCSP_RESPID_KEY)