Files
wolfssl/examples/ocsp_responder/include.am
T
Juliusz Sosinowicz 4578e1390f Implement OCSP responder
OCSP Responder Core API:

- Add new public API for creating and managing an OCSP responder
- Add public wrappers for internal OCSP request/response functions
- OcspRespCheck: fix check when authorized responder is loaded into CM

Header Cleanup:

- Remove circular dependency when including `#include <wolfssl/wolfcrypt/asn.h>` from wolfssl/wolfcrypt/ecc.h and wolfssl/wolfcrypt/rsa.h

OCSP Responder Example (examples/ocsp_responder/):

- Add a command-line OCSP responder for interoperability testing with OpenSSL's `openssl ocsp` client

Test Scripts (scripts/):

- ocsp-responder-openssl-interop.test: Tests wolfSSL OCSP responder with `openssl ocsp` client
- ocsp-stapling-with-wolfssl-responder.test: Tests wolfSSL OCSP responder when doing OCSP stapling

Certificate Infrastructure (certs/ocsp/):

- Add DER-format certificates and keys for OCSP testing
- Update renewcerts.sh to generate DER versions

Known Limitations (documented in src/ocsp.c header comment):

  - Single request/response per OCSP exchange only
  - Key-hash responder ID only (no name-based responder ID)
  - No singleExtensions support
2026-03-11 10:21:16 +01:00

15 lines
685 B
Plaintext

# vim:ft=automake
# All paths should be given relative to the root
if BUILD_OCSP_RESPONDER
noinst_PROGRAMS += examples/ocsp_responder/ocsp_responder
noinst_HEADERS += examples/ocsp_responder/ocsp_responder.h
examples_ocsp_responder_ocsp_responder_SOURCES = examples/ocsp_responder/ocsp_responder.c
examples_ocsp_responder_ocsp_responder_LDADD = src/libwolfssl@LIBSUFFIX@.la $(LIB_STATIC_ADD)
examples_ocsp_responder_ocsp_responder_DEPENDENCIES = src/libwolfssl@LIBSUFFIX@.la
examples_ocsp_responder_ocsp_responder_CFLAGS = $(AM_CFLAGS)
endif
dist_example_DATA+= examples/ocsp_responder/ocsp_responder.c
DISTCLEANFILES+= examples/ocsp_responder/.libs/ocsp_responder