OCSP Client#
OCSP client to check the revocation status of RIM and device identity certificate chains.
Functions#
- nvat_rc_t nvat_ocsp_client_create_cached(nvat_ocsp_client_t *out_client, const nvat_ocsp_client_t inner_client, uint64_t max_size_bytes, time_t ttl_seconds)
Create a cached OCSP client that wraps an existing OCSP client.
- nvat_rc_t nvat_ocsp_client_create_default(nvat_ocsp_client_t *out_client, const char *base_url, const nvat_http_options_t http_options)
Create an OCSP client with default settings.
- void nvat_ocsp_client_free(nvat_ocsp_client_t *ocsp_client)
Typedefs#
Functions#
- nvat_rc_t nvat_ocsp_client_create_cached(
- nvat_ocsp_client_t *out_client,
- const nvat_ocsp_client_t inner_client,
- uint64_t max_size_bytes,
- time_t ttl_seconds,
Create a cached OCSP client that wraps an existing OCSP client.
Ownership: On success, the inner_client is safe to be free’d as it is refcounted
- Parameters:
inner_client – The inner OCSP client to wrap. Must not be NULL.
max_size_bytes – The maximum size of the cache in bytes.
ttl_seconds – The time-to-live for cached items in seconds. The ocsp response will be cached for min(ttl_seconds, ocsp response next update time)
- nvat_rc_t nvat_ocsp_client_create_default(
- nvat_ocsp_client_t *out_client,
- const char *base_url,
- const nvat_http_options_t http_options,
Create an OCSP client with default settings.
Ownership
: On success, the caller assumes ownership of the allocated nvat_ocsp_client_t handle. The client is refcounted and safe to share between multiple verifier components.
URL can also be set using the NVAT_OCSP_RESPONSE_BASE_URL environment variable.
- Parameters:
base_url – If NULL, the default base URL of the NVIDIA OCSP Response is used.
http_options – If NULL, default HTTP options will be used.
-
void nvat_ocsp_client_free(nvat_ocsp_client_t *ocsp_client)#
Typedefs#
-
typedef struct nvat_ocsp_client_st *nvat_ocsp_client_t#