c - OpenSSL certificate revocation check in client program using OCSP stapling -

-

i have embedded c client program securely connects server using openssl. server provides certificate during handshake , client has check revocation status of certificate. using ocsp.

all of works, need re-implement client's revocation check using ocsp stapling (assuming server start providing this).

currently server certificate using x509 *cert = ssl_get_peer_certificate(ssl) check subjectaltname against server's domain , authorityinfoaccess (for ocsp uri).

assuming have ssl * ssl; , set , connected via ssl_connect(ssl);, do @ point @ ocsp stapling information , verify certificate received? can't find sample code how implement using openssl library.

there couple steps:

  1. have client send status_request extension via ssl_set_tlsext_status_type(ssl, tlsext_statustype_ocsp).

  2. register callback (and argument) examine ocsp response via ssl_ctx_set_tlsext_status_cb(ctx, ocsp_resp_cb) , ssl_ctx_set_tlsext_status_arg(ctx, arg)

  3. write callback function. 1 used s_client demonstrates how @ response information:

    static int ocsp_resp_cb(ssl *s, void *arg) { const unsigned char *p; int len; ocsp_response *rsp; len = ssl_get_tlsext_status_ocsp_resp(s, &p); bio_puts(arg, "ocsp response: "); if (!p)     {     bio_puts(arg, "no response sent\n");     return 1;     } rsp = d2i_ocsp_response(null, &p, len); if (!rsp)     {     bio_puts(arg, "response parse error\n");     bio_dump_indent(arg, (char *)p, len, 4); return 0; } bio_puts(arg, "\n======================================\n"); ocsp_response_print(arg, rsp, 0); bio_puts(arg, "======================================\n"); ocsp_response_free(rsp); return 1; }

Comments

Post a Comment

Popular posts from this blog

delphi - How to convert bitmaps to video? -

-
Image
my application creates images fractals , love feeling of 'flying' around fractal. once saved 2000 bitmaps file , created avi using premiere. experience rather frustrating though succeeded in creating movie. spectacular. of course want create video application. don't care niftyness of codec, compression or whatever. want have video can replay on systems. in past have tried never succeeded. triggered question alas not ffmpeg running. update i decided adapt question , put bounty it. have seen several solutions attractive (because it's simple) seems me taviwrite. tried taviwriter did not succeed. in procedure taviwriter.write; function call around line 370 avierr := avisavev(s, // pchar(filename), nil, // file handler nil, // callback nstreams, // number of streams streams, compoptions); // compress options
Read more

jasper reports - Fixed header in Excel using JasperReports -

-
how can create excel report fixed header using japserreports? mean need header fixed when scroll excel file. this possible adding couple properties in jrxml file each report. take @ advanced excel features freeze panes. if wanted freeze after first column header (down left side basically) this: <statictext> <reportelement style="sans_bold" mode="opaque" x="0" y="60" width="104" height="20" forecolor="#ffffff" backcolor="#666666"> <property name="net.sf.jasperreports.export.xls.auto.filter" value="start"/> <property name="net.sf.jasperreports.export.xls.column.width" value="110"/> <property name="net.sf.jasperreports.export.xls.freeze.column.edge" value="left"/> </reportelement> &
Read more

python - ('The SQL contains 0 parameter markers, but 50 parameters were supplied', 'HY000') or TypeError: 'tuple' object is not callable -

-
import pyodbc,nltk,array cnxn = pyodbc.connect('driver={mysql odbc 5.1 driver};server=127.0.0.1;port=3306;database=information_schema;user=root; password=1234;option=3;') cursor = cnxn.cursor() cursor.execute("use collegedatabase ;") cursor.execute("select * sampledata ; ") cnxn.commit() s=[] j=[] x=[] words = [] w = [] sfq = [] pos=[] entry in cursor: s.append(entry.injury_type),j.append(entry.injury_desc) nltk.tokenize import punktwordtokenizer nltk.corpus import stopwords tokenizer = punktwordtokenizer() english_stops = set(stopwords.words('english')) in range(0,26): # filter stop words tokenizer.tokenize(j[i]) w.append([word word in tokenizer.tokenize(j[i]) if word not in english_stops]) in range(0 , 26):#converting tokenzied text ito string sfq.append(" ".join(w[a])) replacers import regexpreplacer replacer = regexpreplacer() in range (0,26):#pos tagging replacer.repl
Read more