1 /* $OpenBSD: ocsp_asn.c,v 1.7 2015/02/09 16:04:46 jsing Exp $ */
2 /* Written by Dr Stephen N Henson (steve@openssl.org) for the OpenSSL
5 /* ====================================================================
6 * Copyright (c) 2000 The OpenSSL Project. All rights reserved.
8 * Redistribution and use in source and binary forms, with or without
9 * modification, are permitted provided that the following conditions
12 * 1. Redistributions of source code must retain the above copyright
13 * notice, this list of conditions and the following disclaimer.
15 * 2. Redistributions in binary form must reproduce the above copyright
16 * notice, this list of conditions and the following disclaimer in
17 * the documentation and/or other materials provided with the
20 * 3. All advertising materials mentioning features or use of this
21 * software must display the following acknowledgment:
22 * "This product includes software developed by the OpenSSL Project
23 * for use in the OpenSSL Toolkit. (http://www.OpenSSL.org/)"
25 * 4. The names "OpenSSL Toolkit" and "OpenSSL Project" must not be used to
26 * endorse or promote products derived from this software without
27 * prior written permission. For written permission, please contact
28 * licensing@OpenSSL.org.
30 * 5. Products derived from this software may not be called "OpenSSL"
31 * nor may "OpenSSL" appear in their names without prior written
32 * permission of the OpenSSL Project.
34 * 6. Redistributions of any form whatsoever must retain the following
36 * "This product includes software developed by the OpenSSL Project
37 * for use in the OpenSSL Toolkit (http://www.OpenSSL.org/)"
39 * THIS SOFTWARE IS PROVIDED BY THE OpenSSL PROJECT ``AS IS'' AND ANY
40 * EXPRESSED OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE
41 * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR
42 * PURPOSE ARE DISCLAIMED. IN NO EVENT SHALL THE OpenSSL PROJECT OR
43 * ITS CONTRIBUTORS BE LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL,
44 * SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT
45 * NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES;
46 * LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION)
47 * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT,
48 * STRICT LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE)
49 * ARISING IN ANY WAY OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED
50 * OF THE POSSIBILITY OF SUCH DAMAGE.
51 * ====================================================================
53 * This product includes cryptographic software written by Eric Young
54 * (eay@cryptsoft.com). This product includes software written by Tim
55 * Hudson (tjh@cryptsoft.com).
58 #include <openssl/asn1.h>
59 #include <openssl/asn1t.h>
60 #include <openssl/ocsp.h>
62 static const ASN1_TEMPLATE OCSP_SIGNATURE_seq_tt[] = {
66 .offset = offsetof(OCSP_SIGNATURE, signatureAlgorithm),
67 .field_name = "signatureAlgorithm",
68 .item = &X509_ALGOR_it,
73 .offset = offsetof(OCSP_SIGNATURE, signature),
74 .field_name = "signature",
75 .item = &ASN1_BIT_STRING_it,
78 .flags = ASN1_TFLG_EXPLICIT | ASN1_TFLG_SEQUENCE_OF | ASN1_TFLG_OPTIONAL,
80 .offset = offsetof(OCSP_SIGNATURE, certs),
81 .field_name = "certs",
86 const ASN1_ITEM OCSP_SIGNATURE_it = {
87 .itype = ASN1_ITYPE_SEQUENCE,
88 .utype = V_ASN1_SEQUENCE,
89 .templates = OCSP_SIGNATURE_seq_tt,
90 .tcount = sizeof(OCSP_SIGNATURE_seq_tt) / sizeof(ASN1_TEMPLATE),
92 .size = sizeof(OCSP_SIGNATURE),
93 .sname = "OCSP_SIGNATURE",
98 d2i_OCSP_SIGNATURE(OCSP_SIGNATURE **a, const unsigned char **in, long len)
100 return (OCSP_SIGNATURE *)ASN1_item_d2i((ASN1_VALUE **)a, in, len,
105 i2d_OCSP_SIGNATURE(OCSP_SIGNATURE *a, unsigned char **out)
107 return ASN1_item_i2d((ASN1_VALUE *)a, out, &OCSP_SIGNATURE_it);
111 OCSP_SIGNATURE_new(void)
113 return (OCSP_SIGNATURE *)ASN1_item_new(&OCSP_SIGNATURE_it);
117 OCSP_SIGNATURE_free(OCSP_SIGNATURE *a)
119 ASN1_item_free((ASN1_VALUE *)a, &OCSP_SIGNATURE_it);
122 static const ASN1_TEMPLATE OCSP_CERTID_seq_tt[] = {
126 .offset = offsetof(OCSP_CERTID, hashAlgorithm),
127 .field_name = "hashAlgorithm",
128 .item = &X509_ALGOR_it,
133 .offset = offsetof(OCSP_CERTID, issuerNameHash),
134 .field_name = "issuerNameHash",
135 .item = &ASN1_OCTET_STRING_it,
140 .offset = offsetof(OCSP_CERTID, issuerKeyHash),
141 .field_name = "issuerKeyHash",
142 .item = &ASN1_OCTET_STRING_it,
147 .offset = offsetof(OCSP_CERTID, serialNumber),
148 .field_name = "serialNumber",
149 .item = &ASN1_INTEGER_it,
153 const ASN1_ITEM OCSP_CERTID_it = {
154 .itype = ASN1_ITYPE_SEQUENCE,
155 .utype = V_ASN1_SEQUENCE,
156 .templates = OCSP_CERTID_seq_tt,
157 .tcount = sizeof(OCSP_CERTID_seq_tt) / sizeof(ASN1_TEMPLATE),
159 .size = sizeof(OCSP_CERTID),
160 .sname = "OCSP_CERTID",
165 d2i_OCSP_CERTID(OCSP_CERTID **a, const unsigned char **in, long len)
167 return (OCSP_CERTID *)ASN1_item_d2i((ASN1_VALUE **)a, in, len,
172 i2d_OCSP_CERTID(OCSP_CERTID *a, unsigned char **out)
174 return ASN1_item_i2d((ASN1_VALUE *)a, out, &OCSP_CERTID_it);
178 OCSP_CERTID_new(void)
180 return (OCSP_CERTID *)ASN1_item_new(&OCSP_CERTID_it);
184 OCSP_CERTID_free(OCSP_CERTID *a)
186 ASN1_item_free((ASN1_VALUE *)a, &OCSP_CERTID_it);
189 static const ASN1_TEMPLATE OCSP_ONEREQ_seq_tt[] = {
193 .offset = offsetof(OCSP_ONEREQ, reqCert),
194 .field_name = "reqCert",
195 .item = &OCSP_CERTID_it,
198 .flags = ASN1_TFLG_EXPLICIT | ASN1_TFLG_SEQUENCE_OF | ASN1_TFLG_OPTIONAL,
200 .offset = offsetof(OCSP_ONEREQ, singleRequestExtensions),
201 .field_name = "singleRequestExtensions",
202 .item = &X509_EXTENSION_it,
206 const ASN1_ITEM OCSP_ONEREQ_it = {
207 .itype = ASN1_ITYPE_SEQUENCE,
208 .utype = V_ASN1_SEQUENCE,
209 .templates = OCSP_ONEREQ_seq_tt,
210 .tcount = sizeof(OCSP_ONEREQ_seq_tt) / sizeof(ASN1_TEMPLATE),
212 .size = sizeof(OCSP_ONEREQ),
213 .sname = "OCSP_ONEREQ",
218 d2i_OCSP_ONEREQ(OCSP_ONEREQ **a, const unsigned char **in, long len)
220 return (OCSP_ONEREQ *)ASN1_item_d2i((ASN1_VALUE **)a, in, len,
225 i2d_OCSP_ONEREQ(OCSP_ONEREQ *a, unsigned char **out)
227 return ASN1_item_i2d((ASN1_VALUE *)a, out, &OCSP_ONEREQ_it);
231 OCSP_ONEREQ_new(void)
233 return (OCSP_ONEREQ *)ASN1_item_new(&OCSP_ONEREQ_it);
237 OCSP_ONEREQ_free(OCSP_ONEREQ *a)
239 ASN1_item_free((ASN1_VALUE *)a, &OCSP_ONEREQ_it);
242 static const ASN1_TEMPLATE OCSP_REQINFO_seq_tt[] = {
244 .flags = ASN1_TFLG_EXPLICIT | ASN1_TFLG_OPTIONAL,
246 .offset = offsetof(OCSP_REQINFO, version),
247 .field_name = "version",
248 .item = &ASN1_INTEGER_it,
251 .flags = ASN1_TFLG_EXPLICIT | ASN1_TFLG_OPTIONAL,
253 .offset = offsetof(OCSP_REQINFO, requestorName),
254 .field_name = "requestorName",
255 .item = &GENERAL_NAME_it,
258 .flags = ASN1_TFLG_SEQUENCE_OF,
260 .offset = offsetof(OCSP_REQINFO, requestList),
261 .field_name = "requestList",
262 .item = &OCSP_ONEREQ_it,
265 .flags = ASN1_TFLG_EXPLICIT | ASN1_TFLG_SEQUENCE_OF | ASN1_TFLG_OPTIONAL,
267 .offset = offsetof(OCSP_REQINFO, requestExtensions),
268 .field_name = "requestExtensions",
269 .item = &X509_EXTENSION_it,
273 const ASN1_ITEM OCSP_REQINFO_it = {
274 .itype = ASN1_ITYPE_SEQUENCE,
275 .utype = V_ASN1_SEQUENCE,
276 .templates = OCSP_REQINFO_seq_tt,
277 .tcount = sizeof(OCSP_REQINFO_seq_tt) / sizeof(ASN1_TEMPLATE),
279 .size = sizeof(OCSP_REQINFO),
280 .sname = "OCSP_REQINFO",
285 d2i_OCSP_REQINFO(OCSP_REQINFO **a, const unsigned char **in, long len)
287 return (OCSP_REQINFO *)ASN1_item_d2i((ASN1_VALUE **)a, in, len,
292 i2d_OCSP_REQINFO(OCSP_REQINFO *a, unsigned char **out)
294 return ASN1_item_i2d((ASN1_VALUE *)a, out, &OCSP_REQINFO_it);
298 OCSP_REQINFO_new(void)
300 return (OCSP_REQINFO *)ASN1_item_new(&OCSP_REQINFO_it);
304 OCSP_REQINFO_free(OCSP_REQINFO *a)
306 ASN1_item_free((ASN1_VALUE *)a, &OCSP_REQINFO_it);
309 static const ASN1_TEMPLATE OCSP_REQUEST_seq_tt[] = {
313 .offset = offsetof(OCSP_REQUEST, tbsRequest),
314 .field_name = "tbsRequest",
315 .item = &OCSP_REQINFO_it,
318 .flags = ASN1_TFLG_EXPLICIT | ASN1_TFLG_OPTIONAL,
320 .offset = offsetof(OCSP_REQUEST, optionalSignature),
321 .field_name = "optionalSignature",
322 .item = &OCSP_SIGNATURE_it,
326 const ASN1_ITEM OCSP_REQUEST_it = {
327 .itype = ASN1_ITYPE_SEQUENCE,
328 .utype = V_ASN1_SEQUENCE,
329 .templates = OCSP_REQUEST_seq_tt,
330 .tcount = sizeof(OCSP_REQUEST_seq_tt) / sizeof(ASN1_TEMPLATE),
332 .size = sizeof(OCSP_REQUEST),
333 .sname = "OCSP_REQUEST",
338 d2i_OCSP_REQUEST(OCSP_REQUEST **a, const unsigned char **in, long len)
340 return (OCSP_REQUEST *)ASN1_item_d2i((ASN1_VALUE **)a, in, len,
345 i2d_OCSP_REQUEST(OCSP_REQUEST *a, unsigned char **out)
347 return ASN1_item_i2d((ASN1_VALUE *)a, out, &OCSP_REQUEST_it);
351 OCSP_REQUEST_new(void)
353 return (OCSP_REQUEST *)ASN1_item_new(&OCSP_REQUEST_it);
357 OCSP_REQUEST_free(OCSP_REQUEST *a)
359 ASN1_item_free((ASN1_VALUE *)a, &OCSP_REQUEST_it);
362 /* OCSP_RESPONSE templates */
364 static const ASN1_TEMPLATE OCSP_RESPBYTES_seq_tt[] = {
368 .offset = offsetof(OCSP_RESPBYTES, responseType),
369 .field_name = "responseType",
370 .item = &ASN1_OBJECT_it,
375 .offset = offsetof(OCSP_RESPBYTES, response),
376 .field_name = "response",
377 .item = &ASN1_OCTET_STRING_it,
381 const ASN1_ITEM OCSP_RESPBYTES_it = {
382 .itype = ASN1_ITYPE_SEQUENCE,
383 .utype = V_ASN1_SEQUENCE,
384 .templates = OCSP_RESPBYTES_seq_tt,
385 .tcount = sizeof(OCSP_RESPBYTES_seq_tt) / sizeof(ASN1_TEMPLATE),
387 .size = sizeof(OCSP_RESPBYTES),
388 .sname = "OCSP_RESPBYTES",
393 d2i_OCSP_RESPBYTES(OCSP_RESPBYTES **a, const unsigned char **in, long len)
395 return (OCSP_RESPBYTES *)ASN1_item_d2i((ASN1_VALUE **)a, in, len,
400 i2d_OCSP_RESPBYTES(OCSP_RESPBYTES *a, unsigned char **out)
402 return ASN1_item_i2d((ASN1_VALUE *)a, out, &OCSP_RESPBYTES_it);
406 OCSP_RESPBYTES_new(void)
408 return (OCSP_RESPBYTES *)ASN1_item_new(&OCSP_RESPBYTES_it);
412 OCSP_RESPBYTES_free(OCSP_RESPBYTES *a)
414 ASN1_item_free((ASN1_VALUE *)a, &OCSP_RESPBYTES_it);
417 static const ASN1_TEMPLATE OCSP_RESPONSE_seq_tt[] = {
421 .offset = offsetof(OCSP_RESPONSE, responseStatus),
422 .field_name = "responseStatus",
423 .item = &ASN1_ENUMERATED_it,
426 .flags = ASN1_TFLG_EXPLICIT | ASN1_TFLG_OPTIONAL,
428 .offset = offsetof(OCSP_RESPONSE, responseBytes),
429 .field_name = "responseBytes",
430 .item = &OCSP_RESPBYTES_it,
434 const ASN1_ITEM OCSP_RESPONSE_it = {
435 .itype = ASN1_ITYPE_SEQUENCE,
436 .utype = V_ASN1_SEQUENCE,
437 .templates = OCSP_RESPONSE_seq_tt,
438 .tcount = sizeof(OCSP_RESPONSE_seq_tt) / sizeof(ASN1_TEMPLATE),
440 .size = sizeof(OCSP_RESPONSE),
441 .sname = "OCSP_RESPONSE",
446 d2i_OCSP_RESPONSE(OCSP_RESPONSE **a, const unsigned char **in, long len)
448 return (OCSP_RESPONSE *)ASN1_item_d2i((ASN1_VALUE **)a, in, len,
453 i2d_OCSP_RESPONSE(OCSP_RESPONSE *a, unsigned char **out)
455 return ASN1_item_i2d((ASN1_VALUE *)a, out, &OCSP_RESPONSE_it);
459 OCSP_RESPONSE_new(void)
461 return (OCSP_RESPONSE *)ASN1_item_new(&OCSP_RESPONSE_it);
465 OCSP_RESPONSE_free(OCSP_RESPONSE *a)
467 ASN1_item_free((ASN1_VALUE *)a, &OCSP_RESPONSE_it);
470 static const ASN1_TEMPLATE OCSP_RESPID_ch_tt[] = {
472 .flags = ASN1_TFLG_EXPLICIT,
474 .offset = offsetof(OCSP_RESPID, value.byName),
475 .field_name = "value.byName",
476 .item = &X509_NAME_it,
479 .flags = ASN1_TFLG_EXPLICIT,
481 .offset = offsetof(OCSP_RESPID, value.byKey),
482 .field_name = "value.byKey",
483 .item = &ASN1_OCTET_STRING_it,
487 const ASN1_ITEM OCSP_RESPID_it = {
488 .itype = ASN1_ITYPE_CHOICE,
489 .utype = offsetof(OCSP_RESPID, type),
490 .templates = OCSP_RESPID_ch_tt,
491 .tcount = sizeof(OCSP_RESPID_ch_tt) / sizeof(ASN1_TEMPLATE),
493 .size = sizeof(OCSP_RESPID),
494 .sname = "OCSP_RESPID",
499 d2i_OCSP_RESPID(OCSP_RESPID **a, const unsigned char **in, long len)
501 return (OCSP_RESPID *)ASN1_item_d2i((ASN1_VALUE **)a, in, len,
506 i2d_OCSP_RESPID(OCSP_RESPID *a, unsigned char **out)
508 return ASN1_item_i2d((ASN1_VALUE *)a, out, &OCSP_RESPID_it);
512 OCSP_RESPID_new(void)
514 return (OCSP_RESPID *)ASN1_item_new(&OCSP_RESPID_it);
518 OCSP_RESPID_free(OCSP_RESPID *a)
520 ASN1_item_free((ASN1_VALUE *)a, &OCSP_RESPID_it);
523 static const ASN1_TEMPLATE OCSP_REVOKEDINFO_seq_tt[] = {
527 .offset = offsetof(OCSP_REVOKEDINFO, revocationTime),
528 .field_name = "revocationTime",
529 .item = &ASN1_GENERALIZEDTIME_it,
532 .flags = ASN1_TFLG_EXPLICIT | ASN1_TFLG_OPTIONAL,
534 .offset = offsetof(OCSP_REVOKEDINFO, revocationReason),
535 .field_name = "revocationReason",
536 .item = &ASN1_ENUMERATED_it,
540 const ASN1_ITEM OCSP_REVOKEDINFO_it = {
541 .itype = ASN1_ITYPE_SEQUENCE,
542 .utype = V_ASN1_SEQUENCE,
543 .templates = OCSP_REVOKEDINFO_seq_tt,
544 .tcount = sizeof(OCSP_REVOKEDINFO_seq_tt) / sizeof(ASN1_TEMPLATE),
546 .size = sizeof(OCSP_REVOKEDINFO),
547 .sname = "OCSP_REVOKEDINFO",
552 d2i_OCSP_REVOKEDINFO(OCSP_REVOKEDINFO **a, const unsigned char **in, long len)
554 return (OCSP_REVOKEDINFO *)ASN1_item_d2i((ASN1_VALUE **)a, in, len,
555 &OCSP_REVOKEDINFO_it);
559 i2d_OCSP_REVOKEDINFO(OCSP_REVOKEDINFO *a, unsigned char **out)
561 return ASN1_item_i2d((ASN1_VALUE *)a, out, &OCSP_REVOKEDINFO_it);
565 OCSP_REVOKEDINFO_new(void)
567 return (OCSP_REVOKEDINFO *)ASN1_item_new(&OCSP_REVOKEDINFO_it);
571 OCSP_REVOKEDINFO_free(OCSP_REVOKEDINFO *a)
573 ASN1_item_free((ASN1_VALUE *)a, &OCSP_REVOKEDINFO_it);
576 static const ASN1_TEMPLATE OCSP_CERTSTATUS_ch_tt[] = {
578 .flags = ASN1_TFLG_IMPLICIT,
580 .offset = offsetof(OCSP_CERTSTATUS, value.good),
581 .field_name = "value.good",
582 .item = &ASN1_NULL_it,
585 .flags = ASN1_TFLG_IMPLICIT,
587 .offset = offsetof(OCSP_CERTSTATUS, value.revoked),
588 .field_name = "value.revoked",
589 .item = &OCSP_REVOKEDINFO_it,
592 .flags = ASN1_TFLG_IMPLICIT,
594 .offset = offsetof(OCSP_CERTSTATUS, value.unknown),
595 .field_name = "value.unknown",
596 .item = &ASN1_NULL_it,
600 const ASN1_ITEM OCSP_CERTSTATUS_it = {
601 .itype = ASN1_ITYPE_CHOICE,
602 .utype = offsetof(OCSP_CERTSTATUS, type),
603 .templates = OCSP_CERTSTATUS_ch_tt,
604 .tcount = sizeof(OCSP_CERTSTATUS_ch_tt) / sizeof(ASN1_TEMPLATE),
606 .size = sizeof(OCSP_CERTSTATUS),
607 .sname = "OCSP_CERTSTATUS",
612 d2i_OCSP_CERTSTATUS(OCSP_CERTSTATUS **a, const unsigned char **in, long len)
614 return (OCSP_CERTSTATUS *)ASN1_item_d2i((ASN1_VALUE **)a, in, len,
615 &OCSP_CERTSTATUS_it);
619 i2d_OCSP_CERTSTATUS(OCSP_CERTSTATUS *a, unsigned char **out)
621 return ASN1_item_i2d((ASN1_VALUE *)a, out, &OCSP_CERTSTATUS_it);
625 OCSP_CERTSTATUS_new(void)
627 return (OCSP_CERTSTATUS *)ASN1_item_new(&OCSP_CERTSTATUS_it);
631 OCSP_CERTSTATUS_free(OCSP_CERTSTATUS *a)
633 ASN1_item_free((ASN1_VALUE *)a, &OCSP_CERTSTATUS_it);
636 static const ASN1_TEMPLATE OCSP_SINGLERESP_seq_tt[] = {
640 .offset = offsetof(OCSP_SINGLERESP, certId),
641 .field_name = "certId",
642 .item = &OCSP_CERTID_it,
647 .offset = offsetof(OCSP_SINGLERESP, certStatus),
648 .field_name = "certStatus",
649 .item = &OCSP_CERTSTATUS_it,
654 .offset = offsetof(OCSP_SINGLERESP, thisUpdate),
655 .field_name = "thisUpdate",
656 .item = &ASN1_GENERALIZEDTIME_it,
659 .flags = ASN1_TFLG_EXPLICIT | ASN1_TFLG_OPTIONAL,
661 .offset = offsetof(OCSP_SINGLERESP, nextUpdate),
662 .field_name = "nextUpdate",
663 .item = &ASN1_GENERALIZEDTIME_it,
666 .flags = ASN1_TFLG_EXPLICIT | ASN1_TFLG_SEQUENCE_OF | ASN1_TFLG_OPTIONAL,
668 .offset = offsetof(OCSP_SINGLERESP, singleExtensions),
669 .field_name = "singleExtensions",
670 .item = &X509_EXTENSION_it,
674 const ASN1_ITEM OCSP_SINGLERESP_it = {
675 .itype = ASN1_ITYPE_SEQUENCE,
676 .utype = V_ASN1_SEQUENCE,
677 .templates = OCSP_SINGLERESP_seq_tt,
678 .tcount = sizeof(OCSP_SINGLERESP_seq_tt) / sizeof(ASN1_TEMPLATE),
680 .size = sizeof(OCSP_SINGLERESP),
681 .sname = "OCSP_SINGLERESP",
686 d2i_OCSP_SINGLERESP(OCSP_SINGLERESP **a, const unsigned char **in, long len)
688 return (OCSP_SINGLERESP *)ASN1_item_d2i((ASN1_VALUE **)a, in, len,
689 &OCSP_SINGLERESP_it);
693 i2d_OCSP_SINGLERESP(OCSP_SINGLERESP *a, unsigned char **out)
695 return ASN1_item_i2d((ASN1_VALUE *)a, out, &OCSP_SINGLERESP_it);
699 OCSP_SINGLERESP_new(void)
701 return (OCSP_SINGLERESP *)ASN1_item_new(&OCSP_SINGLERESP_it);
705 OCSP_SINGLERESP_free(OCSP_SINGLERESP *a)
707 ASN1_item_free((ASN1_VALUE *)a, &OCSP_SINGLERESP_it);
710 static const ASN1_TEMPLATE OCSP_RESPDATA_seq_tt[] = {
712 .flags = ASN1_TFLG_EXPLICIT | ASN1_TFLG_OPTIONAL,
714 .offset = offsetof(OCSP_RESPDATA, version),
715 .field_name = "version",
716 .item = &ASN1_INTEGER_it,
721 .offset = offsetof(OCSP_RESPDATA, responderId),
722 .field_name = "responderId",
723 .item = &OCSP_RESPID_it,
728 .offset = offsetof(OCSP_RESPDATA, producedAt),
729 .field_name = "producedAt",
730 .item = &ASN1_GENERALIZEDTIME_it,
733 .flags = ASN1_TFLG_SEQUENCE_OF,
735 .offset = offsetof(OCSP_RESPDATA, responses),
736 .field_name = "responses",
737 .item = &OCSP_SINGLERESP_it,
740 .flags = ASN1_TFLG_EXPLICIT | ASN1_TFLG_SEQUENCE_OF | ASN1_TFLG_OPTIONAL,
742 .offset = offsetof(OCSP_RESPDATA, responseExtensions),
743 .field_name = "responseExtensions",
744 .item = &X509_EXTENSION_it,
748 const ASN1_ITEM OCSP_RESPDATA_it = {
749 .itype = ASN1_ITYPE_SEQUENCE,
750 .utype = V_ASN1_SEQUENCE,
751 .templates = OCSP_RESPDATA_seq_tt,
752 .tcount = sizeof(OCSP_RESPDATA_seq_tt) / sizeof(ASN1_TEMPLATE),
754 .size = sizeof(OCSP_RESPDATA),
755 .sname = "OCSP_RESPDATA",
760 d2i_OCSP_RESPDATA(OCSP_RESPDATA **a, const unsigned char **in, long len)
762 return (OCSP_RESPDATA *)ASN1_item_d2i((ASN1_VALUE **)a, in, len,
767 i2d_OCSP_RESPDATA(OCSP_RESPDATA *a, unsigned char **out)
769 return ASN1_item_i2d((ASN1_VALUE *)a, out, &OCSP_RESPDATA_it);
773 OCSP_RESPDATA_new(void)
775 return (OCSP_RESPDATA *)ASN1_item_new(&OCSP_RESPDATA_it);
779 OCSP_RESPDATA_free(OCSP_RESPDATA *a)
781 ASN1_item_free((ASN1_VALUE *)a, &OCSP_RESPDATA_it);
784 static const ASN1_TEMPLATE OCSP_BASICRESP_seq_tt[] = {
788 .offset = offsetof(OCSP_BASICRESP, tbsResponseData),
789 .field_name = "tbsResponseData",
790 .item = &OCSP_RESPDATA_it,
795 .offset = offsetof(OCSP_BASICRESP, signatureAlgorithm),
796 .field_name = "signatureAlgorithm",
797 .item = &X509_ALGOR_it,
802 .offset = offsetof(OCSP_BASICRESP, signature),
803 .field_name = "signature",
804 .item = &ASN1_BIT_STRING_it,
807 .flags = ASN1_TFLG_EXPLICIT | ASN1_TFLG_SEQUENCE_OF | ASN1_TFLG_OPTIONAL,
809 .offset = offsetof(OCSP_BASICRESP, certs),
810 .field_name = "certs",
815 const ASN1_ITEM OCSP_BASICRESP_it = {
816 .itype = ASN1_ITYPE_SEQUENCE,
817 .utype = V_ASN1_SEQUENCE,
818 .templates = OCSP_BASICRESP_seq_tt,
819 .tcount = sizeof(OCSP_BASICRESP_seq_tt) / sizeof(ASN1_TEMPLATE),
821 .size = sizeof(OCSP_BASICRESP),
822 .sname = "OCSP_BASICRESP",
827 d2i_OCSP_BASICRESP(OCSP_BASICRESP **a, const unsigned char **in, long len)
829 return (OCSP_BASICRESP *)ASN1_item_d2i((ASN1_VALUE **)a, in, len,
834 i2d_OCSP_BASICRESP(OCSP_BASICRESP *a, unsigned char **out)
836 return ASN1_item_i2d((ASN1_VALUE *)a, out, &OCSP_BASICRESP_it);
840 OCSP_BASICRESP_new(void)
842 return (OCSP_BASICRESP *)ASN1_item_new(&OCSP_BASICRESP_it);
846 OCSP_BASICRESP_free(OCSP_BASICRESP *a)
848 ASN1_item_free((ASN1_VALUE *)a, &OCSP_BASICRESP_it);
851 static const ASN1_TEMPLATE OCSP_CRLID_seq_tt[] = {
853 .flags = ASN1_TFLG_EXPLICIT | ASN1_TFLG_OPTIONAL,
855 .offset = offsetof(OCSP_CRLID, crlUrl),
856 .field_name = "crlUrl",
857 .item = &ASN1_IA5STRING_it,
860 .flags = ASN1_TFLG_EXPLICIT | ASN1_TFLG_OPTIONAL,
862 .offset = offsetof(OCSP_CRLID, crlNum),
863 .field_name = "crlNum",
864 .item = &ASN1_INTEGER_it,
867 .flags = ASN1_TFLG_EXPLICIT | ASN1_TFLG_OPTIONAL,
869 .offset = offsetof(OCSP_CRLID, crlTime),
870 .field_name = "crlTime",
871 .item = &ASN1_GENERALIZEDTIME_it,
875 const ASN1_ITEM OCSP_CRLID_it = {
876 .itype = ASN1_ITYPE_SEQUENCE,
877 .utype = V_ASN1_SEQUENCE,
878 .templates = OCSP_CRLID_seq_tt,
879 .tcount = sizeof(OCSP_CRLID_seq_tt) / sizeof(ASN1_TEMPLATE),
881 .size = sizeof(OCSP_CRLID),
882 .sname = "OCSP_CRLID",
887 d2i_OCSP_CRLID(OCSP_CRLID **a, const unsigned char **in, long len)
889 return (OCSP_CRLID *)ASN1_item_d2i((ASN1_VALUE **)a, in, len,
894 i2d_OCSP_CRLID(OCSP_CRLID *a, unsigned char **out)
896 return ASN1_item_i2d((ASN1_VALUE *)a, out, &OCSP_CRLID_it);
902 return (OCSP_CRLID *)ASN1_item_new(&OCSP_CRLID_it);
906 OCSP_CRLID_free(OCSP_CRLID *a)
908 ASN1_item_free((ASN1_VALUE *)a, &OCSP_CRLID_it);
911 static const ASN1_TEMPLATE OCSP_SERVICELOC_seq_tt[] = {
915 .offset = offsetof(OCSP_SERVICELOC, issuer),
916 .field_name = "issuer",
917 .item = &X509_NAME_it,
920 .flags = ASN1_TFLG_SEQUENCE_OF | ASN1_TFLG_OPTIONAL,
922 .offset = offsetof(OCSP_SERVICELOC, locator),
923 .field_name = "locator",
924 .item = &ACCESS_DESCRIPTION_it,
928 const ASN1_ITEM OCSP_SERVICELOC_it = {
929 .itype = ASN1_ITYPE_SEQUENCE,
930 .utype = V_ASN1_SEQUENCE,
931 .templates = OCSP_SERVICELOC_seq_tt,
932 .tcount = sizeof(OCSP_SERVICELOC_seq_tt) / sizeof(ASN1_TEMPLATE),
934 .size = sizeof(OCSP_SERVICELOC),
935 .sname = "OCSP_SERVICELOC",
940 d2i_OCSP_SERVICELOC(OCSP_SERVICELOC **a, const unsigned char **in, long len)
942 return (OCSP_SERVICELOC *)ASN1_item_d2i((ASN1_VALUE **)a, in, len,
943 &OCSP_SERVICELOC_it);
947 i2d_OCSP_SERVICELOC(OCSP_SERVICELOC *a, unsigned char **out)
949 return ASN1_item_i2d((ASN1_VALUE *)a, out, &OCSP_SERVICELOC_it);
953 OCSP_SERVICELOC_new(void)
955 return (OCSP_SERVICELOC *)ASN1_item_new(&OCSP_SERVICELOC_it);
959 OCSP_SERVICELOC_free(OCSP_SERVICELOC *a)
961 ASN1_item_free((ASN1_VALUE *)a, &OCSP_SERVICELOC_it);