projects / openssl.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: 1848c56) | patch
CMP: add support for genm with crlStatusList and genp with crls
authorDr. David von Oheimb <David.von.Oheimb@siemens.com>
Sat, 3 Dec 2022 16:49:08 +0000 (17:49 +0100)
committerTomas Mraz <tomas@openssl.org>
Wed, 1 May 2024 12:58:35 +0000 (14:58 +0200)
commit40a200f9e781381d72d234c886e38bcfce36bbc8
tree229fdb094d3a05485c504e66da8934a9d585648atree | snapshot
parent1848c561ec39a9ea91ff1bf740a554be274f98b0commit | diff
CMP: add support for genm with crlStatusList and genp with crls

Introduce the capability to retrieve and update Certificate Revocation Lists
(CRLs) in the CMP client, as specified in section 4.3.4 of RFC 9483.

To request a CRL update, the CMP client can send a genm message with the
option -infotype crlStatusList. The server will respond with a genp message
containing the updated CRL, using the -infoType id-it-crls. The client can
then save the CRL in a specified file using the -crlout parameter.

Co-authored-by: Rajeev Ranjan <ranjan.rajeev@siemens.com>
Reviewed-by: Todd Short <todd.short@me.com>
Reviewed-by: Tomas Mraz <tomas@openssl.org>
(Merged from https://github.com/openssl/openssl/pull/23768)
27 files changed:
CHANGES.md diff | blob | history
apps/cmp.c diff | blob | history
apps/include/cmp_mock_srv.h diff | blob | history
apps/lib/cmp_mock_srv.c diff | blob | history
crypto/cmp/cmp_asn.c diff | blob | history
crypto/cmp/cmp_err.c diff | blob | history
crypto/cmp/cmp_genm.c diff | blob | history
crypto/cmp/cmp_hdr.c diff | blob | history
crypto/cmp/cmp_local.h diff | blob | history
crypto/err/openssl.txt diff | blob | history
crypto/x509/v3_crld.c diff | blob | history
crypto/x509/v3_genn.c diff | blob | history
doc/build.info diff | blob | history
doc/man1/openssl-cmp.pod.in diff | blob | history
doc/man3/GENERAL_NAME.pod [new file with mode: 0644] blob
doc/man3/OSSL_CMP_ITAV_new_caCerts.pod diff | blob | history
doc/man3/OSSL_CMP_exec_certreq.pod diff | blob | history
doc/man3/X509_dup.pod diff | blob | history
include/openssl/cmp.h.in diff | blob | history
include/openssl/cmperr.h diff | blob | history
include/openssl/x509v3.h.in diff | blob | history
test/recipes/80-test_cmp_http_data/Mock/newcrl.pem [new file with mode: 0644] blob
test/recipes/80-test_cmp_http_data/Mock/oldcrl.pem [new file with mode: 0644] blob
test/recipes/80-test_cmp_http_data/Mock/server.cnf diff | blob | history
test/recipes/80-test_cmp_http_data/test_commands.csv diff | blob | history
util/libcrypto.num diff | blob | history
util/other.syms diff | blob | history
Unnamed repository; edit this file 'description' to name the repository.