diff options
Diffstat (limited to 'security/nss/lib/libpkix/pkix_pl_nss/pki/pkix_pl_cert.c')
-rw-r--r-- | security/nss/lib/libpkix/pkix_pl_nss/pki/pkix_pl_cert.c | 118 |
1 files changed, 0 insertions, 118 deletions
diff --git a/security/nss/lib/libpkix/pkix_pl_nss/pki/pkix_pl_cert.c b/security/nss/lib/libpkix/pkix_pl_nss/pki/pkix_pl_cert.c index f66867114..0128c84cb 100644 --- a/security/nss/lib/libpkix/pkix_pl_nss/pki/pkix_pl_cert.c +++ b/security/nss/lib/libpkix/pkix_pl_nss/pki/pkix_pl_cert.c @@ -3585,121 +3585,3 @@ cleanup: PKIX_RETURN(CERT); } - -PKIX_Error * pkix_RevCheckCert( - PKIX_PL_Cert *cert, - PKIX_List *checkers, - PKIX_UInt32 *pCheckerIndex, - void **pNBIOContext, - PKIX_UInt32 *pResultCode, - void *plContext); - -PKIX_Error * -pkix_OcspChecker_Check( - PKIX_PL_Object *checkerObject, - PKIX_PL_Cert *cert, - void **pNBIOContext, - PKIX_UInt32 *pResultCode, - void *plContext); - -static PKIX_Error * -pkix_pl_OcspCheckCert( - CERTCertificate *cert, - int64 time, - void *pwArg, - void *plContext) -{ - PKIX_UInt32 checkerIndex = 0; - PKIX_UInt32 reasonCode = 0; - PKIX_List *revCheckers = NULL; - PKIX_OcspChecker *ocspChecker = NULL; - PKIX_PL_Cert *ppcert = NULL; - PKIX_PL_Date *validity = NULL; - PKIX_Error *errorResult; - PRPollDesc *pollDesc = NULL; - - PKIX_ENTER(CERT, "PKIX_PL_OcspCheckCert"); - PKIX_NULLCHECK_ONE(cert); - - PKIX_CHECK(pkix_pl_Cert_CreateWithNSSCert(cert, &ppcert, plContext), - "pkix_pl_Cert_CreateWithNSSCert failed"); - - PKIX_CHECK(pkix_pl_Date_CreateFromPRTime(time, &validity, plContext), - "pkix_pl_Date_CreateFromPRTime failed"); - - PKIX_CHECK(PKIX_List_Create(&revCheckers, plContext), - "PKIX_List_Create failed"); - - /* create revChecker */ - PKIX_CHECK(PKIX_OcspChecker_Create - (validity, - pwArg, - NULL, /* Use default responder */ - &ocspChecker, - plContext), - "PKIX_OcspChecker_Create failed"); - - PKIX_CHECK(PKIX_List_AppendItem - (revCheckers, (PKIX_PL_Object *)ocspChecker, plContext), - "PKIX_List_AppendItem failed"); - - checkerIndex = 0; - - errorResult = pkix_RevCheckCert - (ppcert, - revCheckers, - &checkerIndex, - (void **)&pollDesc, - &reasonCode, - plContext); - - while ((errorResult == NULL) && (pollDesc != NULL)) { - - if (PR_Poll(pollDesc, 1, 0) < 0) { - PKIX_ERROR("PR_Poll failed"); - } - - errorResult = pkix_RevCheckCert - (ppcert, - revCheckers, - &checkerIndex, - (void **)&pollDesc, - &reasonCode, - plContext); - } - - if (errorResult || (reasonCode != 0)) { - PKIX_ERROR("OCSP Failure or Rejection"); - } - -cleanup: - - PKIX_DECREF(revCheckers); - PKIX_DECREF(ocspChecker); - PKIX_DECREF(ppcert); - PKIX_DECREF(errorResult); - - PKIX_RETURN(CERT); - -} - -SECStatus -PKIX_PL_OcspCheckCert( - CERTCertDBHandle *handle, /* not used */ - CERTCertificate *cert, - int64 time, - void *pwArg) -{ - SECStatus rv = SECFailure; - PKIX_Error *err = NULL; - void *plContext = NULL; - - err = pkix_pl_OcspCheckCert(cert, time, pwArg, plContext); - if (err == NULL) { - rv = SECSuccess; - } else { - (void)PKIX_PL_Object_DecRef((PKIX_PL_Object *)err, plContext); - } - - return (rv); -} |