rename ocsp_ctx to ocsp

ok jsing@
author: beck <> 2016-11-05 14:50:05 +0000
committer: beck <> 2016-11-05 14:50:05 +0000
commit: 9f0d9655f66e938c7327e31562e13e2a11e81838 (patch)
tree: f8562aaa3f17de87e3eca50e4d128c22873832f0 /src/lib/libtls/tls_ocsp.c
parent: 367a9df77750a57cdf4c89fb9de9e4cedcbde539 (diff)
download: openbsd-9f0d9655f66e938c7327e31562e13e2a11e81838.tar.gz
openbsd-9f0d9655f66e938c7327e31562e13e2a11e81838.tar.bz2
openbsd-9f0d9655f66e938c7327e31562e13e2a11e81838.zip
1 files changed, 57 insertions, 57 deletions
diff --git a/src/lib/libtls/tls_ocsp.c b/src/lib/libtls/tls_ocsp.c
index 52e90364a7..2da88f4281 100644
--- a/src/lib/libtls/tls_ocsp.c
+++ b/src/lib/libtls/tls_ocsp.c
@@ -34,25 +34,25 @@
 * State for request.
 */
-static struct tls_ocsp_ctx *
+static struct tls_ocsp *
-tls_ocsp_ctx_new(void)
+tls_ocsp_new(void)
 {
-        return (calloc(1, sizeof(struct tls_ocsp_ctx)));
+        return (calloc(1, sizeof(struct tls_ocsp)));
 }
 void
-tls_ocsp_ctx_free(struct tls_ocsp_ctx *ocsp_ctx)
+tls_ocsp_free(struct tls_ocsp *ocsp)
 {
-        if (ocsp_ctx == NULL)
+        if (ocsp == NULL)
                return;
-        free(ocsp_ctx->ocsp_result);
+        free(ocsp->ocsp_result);
-        ocsp_ctx->ocsp_result = NULL;
+        ocsp->ocsp_result = NULL;
-        free(ocsp_ctx->ocsp_url);
+        free(ocsp->ocsp_url);
-        ocsp_ctx->ocsp_url = NULL;
+        ocsp->ocsp_url = NULL;
-        free(ocsp_ctx->request_data);
+        free(ocsp->request_data);
-        ocsp_ctx->request_data = NULL;
+        ocsp->request_data = NULL;
-        free(ocsp_ctx);
+        free(ocsp);
 }
 static int
@@ -78,8 +78,8 @@ tls_ocsp_fill_info(struct tls *ctx, int response_status, int cert_status,
 {
        struct tls_ocsp_result *info = NULL;
-        free(ctx->ocsp_ctx->ocsp_result);
+        free(ctx->ocsp->ocsp_result);
-        ctx->ocsp_ctx->ocsp_result = NULL;
+        ctx->ocsp->ocsp_result = NULL;
        if ((info = calloc(1, sizeof (struct tls_ocsp_result))) == NULL) {
                tls_set_error(ctx, "calloc");
@@ -115,7 +115,7 @@ tls_ocsp_fill_info(struct tls *ctx, int response_status, int cert_status,
                    "unable to parse next update time in OCSP reply");
                goto error;
        }
-        ctx->ocsp_ctx->ocsp_result = info;
+        ctx->ocsp->ocsp_result = info;
        return 0;
 error:
        free(info);
@@ -155,37 +155,37 @@ tls_ocsp_get_certid(X509 *main_cert, STACK_OF(X509) *extra_certs,
        return cid;
 }
-struct tls_ocsp_ctx *
+struct tls_ocsp *
 tls_ocsp_setup_from_peer(struct tls *ctx)
 {
-        struct tls_ocsp_ctx *ocsp_ctx = NULL;
+        struct tls_ocsp *ocsp = NULL;
        STACK_OF(OPENSSL_STRING) *ocsp_urls = NULL;
-        if ((ocsp_ctx = tls_ocsp_ctx_new()) == NULL)
+        if ((ocsp = tls_ocsp_new()) == NULL)
                goto failed;
        /* steal state from ctx struct */
-        ocsp_ctx->main_cert = SSL_get_peer_certificate(ctx->ssl_conn);
+        ocsp->main_cert = SSL_get_peer_certificate(ctx->ssl_conn);
-        ocsp_ctx->extra_certs = SSL_get_peer_cert_chain(ctx->ssl_conn);
+        ocsp->extra_certs = SSL_get_peer_cert_chain(ctx->ssl_conn);
-        if (ocsp_ctx->main_cert == NULL) {
+        if (ocsp->main_cert == NULL) {
                tls_set_errorx(ctx, "no peer certificate for OCSP");
                goto failed;
        }
-        ocsp_urls = X509_get1_ocsp(ocsp_ctx->main_cert);
+        ocsp_urls = X509_get1_ocsp(ocsp->main_cert);
        if (ocsp_urls == NULL)
                goto failed;
-        ocsp_ctx->ocsp_url = strdup(sk_OPENSSL_STRING_value(ocsp_urls, 0));
+        ocsp->ocsp_url = strdup(sk_OPENSSL_STRING_value(ocsp_urls, 0));
-        if (ocsp_ctx->ocsp_url == NULL) {
+        if (ocsp->ocsp_url == NULL) {
                tls_set_errorx(ctx, "out of memory");
                goto failed;
        }
        X509_email_free(ocsp_urls);
-        return ocsp_ctx;
+        return ocsp;
 failed:
-        tls_ocsp_ctx_free(ocsp_ctx);
+        tls_ocsp_free(ocsp);
        X509_email_free(ocsp_urls);
        return NULL;
 }
@@ -213,7 +213,7 @@ tls_ocsp_verify_response(struct tls *ctx, OCSP_RESPONSE *resp)
        flags = OCSP_TRUSTOTHER;
        /* now verify */
-        if (OCSP_basic_verify(br, ctx->ocsp_ctx->extra_certs,
+        if (OCSP_basic_verify(br, ctx->ocsp->extra_certs,
                SSL_CTX_get_cert_store(ctx->ssl_ctx), flags) != 1) {
                tls_set_error(ctx, "ocsp verify failed");
                goto error;
@@ -227,8 +227,8 @@ tls_ocsp_verify_response(struct tls *ctx, OCSP_RESPONSE *resp)
                goto error;
        }
-        cid = tls_ocsp_get_certid(ctx->ocsp_ctx->main_cert,
+        cid = tls_ocsp_get_certid(ctx->ocsp->main_cert,
-            ctx->ocsp_ctx->extra_certs, ctx->ssl_ctx);
+            ctx->ocsp->extra_certs, ctx->ssl_ctx);
        if (cid == NULL) {
                tls_set_errorx(ctx, "ocsp verify failed: no issuer cert");
                goto error;
@@ -281,8 +281,8 @@ tls_ocsp_process_response_internal(struct tls *ctx, const unsigned char *respons
        resp = d2i_OCSP_RESPONSE(NULL, &response, size);
        if (resp == NULL) {
-                tls_ocsp_ctx_free(ctx->ocsp_ctx);
+                tls_ocsp_free(ctx->ocsp);
-                ctx->ocsp_ctx = NULL;
+                ctx->ocsp = NULL;
                tls_set_error(ctx, "unable to parse OCSP response");
                return -1;
        }
@@ -311,9 +311,9 @@ tls_ocsp_verify_cb(SSL *ssl, void *arg)
                return 1;
        }
-        tls_ocsp_ctx_free(ctx->ocsp_ctx);
+        tls_ocsp_free(ctx->ocsp);
-        ctx->ocsp_ctx = tls_ocsp_setup_from_peer(ctx);
+        ctx->ocsp = tls_ocsp_setup_from_peer(ctx);
-        if (ctx->ocsp_ctx != NULL) {
+        if (ctx->ocsp != NULL) {
                if (ctx->config->verify_cert == 0 || ctx->config->verify_time == 0)
                        return 1;
                res = tls_ocsp_process_response_internal(ctx, raw, size);
@@ -330,79 +330,79 @@ tls_ocsp_verify_cb(SSL *ssl, void *arg)
 const char *
 tls_peer_ocsp_url(struct tls *ctx)
 {
-        if (ctx->ocsp_ctx == NULL)
+        if (ctx->ocsp == NULL)
                return NULL;
-        return ctx->ocsp_ctx->ocsp_url;
+        return ctx->ocsp->ocsp_url;
 }
 const char *
 tls_peer_ocsp_result(struct tls *ctx)
 {
-        if (ctx->ocsp_ctx == NULL)
+        if (ctx->ocsp == NULL)
                return NULL;
-        if (ctx->ocsp_ctx->ocsp_result == NULL)
+        if (ctx->ocsp->ocsp_result == NULL)
                return NULL;
-        return ctx->ocsp_ctx->ocsp_result->result_msg;
+        return ctx->ocsp->ocsp_result->result_msg;
 }
 int
 tls_peer_ocsp_response_status(struct tls *ctx)
 {
-        if (ctx->ocsp_ctx == NULL)
+        if (ctx->ocsp == NULL)
                return -1;
-        if (ctx->ocsp_ctx->ocsp_result == NULL)
+        if (ctx->ocsp->ocsp_result == NULL)
                return -1;
-        return ctx->ocsp_ctx->ocsp_result->response_status;
+        return ctx->ocsp->ocsp_result->response_status;
 }
 int
 tls_peer_ocsp_cert_status(struct tls *ctx)
 {
-        if (ctx->ocsp_ctx == NULL)
+        if (ctx->ocsp == NULL)
                return -1;
-        if (ctx->ocsp_ctx->ocsp_result == NULL)
+        if (ctx->ocsp->ocsp_result == NULL)
                return -1;
-        return ctx->ocsp_ctx->ocsp_result->cert_status;
+        return ctx->ocsp->ocsp_result->cert_status;
 }
 int
 tls_peer_ocsp_crl_reason(struct tls *ctx)
 {
-        if (ctx->ocsp_ctx == NULL)
+        if (ctx->ocsp == NULL)
                return -1;
-        if (ctx->ocsp_ctx->ocsp_result == NULL)
+        if (ctx->ocsp->ocsp_result == NULL)
                return -1;
-        return ctx->ocsp_ctx->ocsp_result->crl_reason;
+        return ctx->ocsp->ocsp_result->crl_reason;
 }
 time_t
 tls_peer_ocsp_this_update(struct tls *ctx)
 {
-        if (ctx->ocsp_ctx == NULL)
+        if (ctx->ocsp == NULL)
                return -1;
-        if (ctx->ocsp_ctx->ocsp_result == NULL)
+        if (ctx->ocsp->ocsp_result == NULL)
                return -1;
-        return ctx->ocsp_ctx->ocsp_result->this_update;
+        return ctx->ocsp->ocsp_result->this_update;
 }
 time_t
 tls_peer_ocsp_next_update(struct tls *ctx)
 {
-        if (ctx->ocsp_ctx == NULL)
+        if (ctx->ocsp == NULL)
                return -1;
-        if (ctx->ocsp_ctx->ocsp_result == NULL)
+        if (ctx->ocsp->ocsp_result == NULL)
                return -1;
-        return ctx->ocsp_ctx->ocsp_result->next_update;
+        return ctx->ocsp->ocsp_result->next_update;
 }
 time_t
 tls_peer_ocsp_revocation_time(struct tls *ctx)
 {
-        if (ctx->ocsp_ctx == NULL)
+        if (ctx->ocsp == NULL)
                return -1;
-        if (ctx->ocsp_ctx->ocsp_result == NULL)
+        if (ctx->ocsp->ocsp_result == NULL)
                return -1;
-        return ctx->ocsp_ctx->ocsp_result->revocation_time;
+        return ctx->ocsp->ocsp_result->revocation_time;
 }
 int
author	beck <>	2016-11-05 14:50:05 +0000
committer	beck <>	2016-11-05 14:50:05 +0000
commit	9f0d9655f66e938c7327e31562e13e2a11e81838 (patch)
tree	f8562aaa3f17de87e3eca50e4d128c22873832f0 /src/lib/libtls/tls_ocsp.c
parent	367a9df77750a57cdf4c89fb9de9e4cedcbde539 (diff)
download	openbsd-9f0d9655f66e938c7327e31562e13e2a11e81838.tar.gz openbsd-9f0d9655f66e938c7327e31562e13e2a11e81838.tar.bz2 openbsd-9f0d9655f66e938c7327e31562e13e2a11e81838.zip

diff --git a/src/lib/libtls/tls_ocsp.c b/src/lib/libtls/tls_ocsp.c index 52e90364a7..2da88f4281 100644 --- a/src/lib/libtls/tls_ocsp.c +++ b/src/lib/libtls/tls_ocsp.c
@@ -34,25 +34,25 @@
34	* State for request.	34	* State for request.
35	*/	35	*/
36		36
37	static struct tls_ocsp_ctx *	37	static struct tls_ocsp *
38	tls_ocsp_ctx_new(void)	38	tls_ocsp_new(void)
39	{	39	{
40	return (calloc(1, sizeof(struct tls_ocsp_ctx)));	40	return (calloc(1, sizeof(struct tls_ocsp)));
41	}	41	}
42		42
43	void	43	void
44	tls_ocsp_ctx_free(struct tls_ocsp_ctx *ocsp_ctx)	44	tls_ocsp_free(struct tls_ocsp *ocsp)
45	{	45	{
46	if (ocsp_ctx == NULL)	46	if (ocsp == NULL)
47	return;	47	return;
48		48
49	free(ocsp_ctx->ocsp_result);	49	free(ocsp->ocsp_result);
50	ocsp_ctx->ocsp_result = NULL;	50	ocsp->ocsp_result = NULL;
51	free(ocsp_ctx->ocsp_url);	51	free(ocsp->ocsp_url);
52	ocsp_ctx->ocsp_url = NULL;	52	ocsp->ocsp_url = NULL;
53	free(ocsp_ctx->request_data);	53	free(ocsp->request_data);
54	ocsp_ctx->request_data = NULL;	54	ocsp->request_data = NULL;
55	free(ocsp_ctx);	55	free(ocsp);
56	}	56	}
57		57
58	static int	58	static int
@@ -78,8 +78,8 @@ tls_ocsp_fill_info(struct tls *ctx, int response_status, int cert_status,
78	{	78	{
79	struct tls_ocsp_result *info = NULL;	79	struct tls_ocsp_result *info = NULL;
80		80
81	free(ctx->ocsp_ctx->ocsp_result);	81	free(ctx->ocsp->ocsp_result);
82	ctx->ocsp_ctx->ocsp_result = NULL;	82	ctx->ocsp->ocsp_result = NULL;
83		83
84	if ((info = calloc(1, sizeof (struct tls_ocsp_result))) == NULL) {	84	if ((info = calloc(1, sizeof (struct tls_ocsp_result))) == NULL) {
85	tls_set_error(ctx, "calloc");	85	tls_set_error(ctx, "calloc");
@@ -115,7 +115,7 @@ tls_ocsp_fill_info(struct tls *ctx, int response_status, int cert_status,
115	"unable to parse next update time in OCSP reply");	115	"unable to parse next update time in OCSP reply");
116	goto error;	116	goto error;
117	}	117	}
118	ctx->ocsp_ctx->ocsp_result = info;	118	ctx->ocsp->ocsp_result = info;
119	return 0;	119	return 0;
120	error:	120	error:
121	free(info);	121	free(info);
@@ -155,37 +155,37 @@ tls_ocsp_get_certid(X509 main_cert, STACK_OF(X509) extra_certs,
155	return cid;	155	return cid;
156	}	156	}
157		157
158	struct tls_ocsp_ctx *	158	struct tls_ocsp *
159	tls_ocsp_setup_from_peer(struct tls *ctx)	159	tls_ocsp_setup_from_peer(struct tls *ctx)
160	{	160	{
161	struct tls_ocsp_ctx *ocsp_ctx = NULL;	161	struct tls_ocsp *ocsp = NULL;
162	STACK_OF(OPENSSL_STRING) *ocsp_urls = NULL;	162	STACK_OF(OPENSSL_STRING) *ocsp_urls = NULL;
163		163
164	if ((ocsp_ctx = tls_ocsp_ctx_new()) == NULL)	164	if ((ocsp = tls_ocsp_new()) == NULL)
165	goto failed;	165	goto failed;
166		166
167	/* steal state from ctx struct */	167	/* steal state from ctx struct */
168	ocsp_ctx->main_cert = SSL_get_peer_certificate(ctx->ssl_conn);	168	ocsp->main_cert = SSL_get_peer_certificate(ctx->ssl_conn);
169	ocsp_ctx->extra_certs = SSL_get_peer_cert_chain(ctx->ssl_conn);	169	ocsp->extra_certs = SSL_get_peer_cert_chain(ctx->ssl_conn);
170	if (ocsp_ctx->main_cert == NULL) {	170	if (ocsp->main_cert == NULL) {
171	tls_set_errorx(ctx, "no peer certificate for OCSP");	171	tls_set_errorx(ctx, "no peer certificate for OCSP");
172	goto failed;	172	goto failed;
173	}	173	}
174		174
175	ocsp_urls = X509_get1_ocsp(ocsp_ctx->main_cert);	175	ocsp_urls = X509_get1_ocsp(ocsp->main_cert);
176	if (ocsp_urls == NULL)	176	if (ocsp_urls == NULL)
177	goto failed;	177	goto failed;
178	ocsp_ctx->ocsp_url = strdup(sk_OPENSSL_STRING_value(ocsp_urls, 0));	178	ocsp->ocsp_url = strdup(sk_OPENSSL_STRING_value(ocsp_urls, 0));
179	if (ocsp_ctx->ocsp_url == NULL) {	179	if (ocsp->ocsp_url == NULL) {
180	tls_set_errorx(ctx, "out of memory");	180	tls_set_errorx(ctx, "out of memory");
181	goto failed;	181	goto failed;
182	}	182	}
183		183
184	X509_email_free(ocsp_urls);	184	X509_email_free(ocsp_urls);
185	return ocsp_ctx;	185	return ocsp;
186		186
187	failed:	187	failed:
188	tls_ocsp_ctx_free(ocsp_ctx);	188	tls_ocsp_free(ocsp);
189	X509_email_free(ocsp_urls);	189	X509_email_free(ocsp_urls);
190	return NULL;	190	return NULL;
191	}	191	}
@@ -213,7 +213,7 @@ tls_ocsp_verify_response(struct tls ctx, OCSP_RESPONSE resp)
213	flags = OCSP_TRUSTOTHER;	213	flags = OCSP_TRUSTOTHER;
214		214
215	/* now verify */	215	/* now verify */
216	if (OCSP_basic_verify(br, ctx->ocsp_ctx->extra_certs,	216	if (OCSP_basic_verify(br, ctx->ocsp->extra_certs,
217	SSL_CTX_get_cert_store(ctx->ssl_ctx), flags) != 1) {	217	SSL_CTX_get_cert_store(ctx->ssl_ctx), flags) != 1) {
218	tls_set_error(ctx, "ocsp verify failed");	218	tls_set_error(ctx, "ocsp verify failed");
219	goto error;	219	goto error;
@@ -227,8 +227,8 @@ tls_ocsp_verify_response(struct tls ctx, OCSP_RESPONSE resp)
227	goto error;	227	goto error;
228	}	228	}
229		229
230	cid = tls_ocsp_get_certid(ctx->ocsp_ctx->main_cert,	230	cid = tls_ocsp_get_certid(ctx->ocsp->main_cert,
231	ctx->ocsp_ctx->extra_certs, ctx->ssl_ctx);	231	ctx->ocsp->extra_certs, ctx->ssl_ctx);
232	if (cid == NULL) {	232	if (cid == NULL) {
233	tls_set_errorx(ctx, "ocsp verify failed: no issuer cert");	233	tls_set_errorx(ctx, "ocsp verify failed: no issuer cert");
234	goto error;	234	goto error;
@@ -281,8 +281,8 @@ tls_ocsp_process_response_internal(struct tls ctx, const unsigned char respons
281		281
282	resp = d2i_OCSP_RESPONSE(NULL, &response, size);	282	resp = d2i_OCSP_RESPONSE(NULL, &response, size);
283	if (resp == NULL) {	283	if (resp == NULL) {
284	tls_ocsp_ctx_free(ctx->ocsp_ctx);	284	tls_ocsp_free(ctx->ocsp);
285	ctx->ocsp_ctx = NULL;	285	ctx->ocsp = NULL;
286	tls_set_error(ctx, "unable to parse OCSP response");	286	tls_set_error(ctx, "unable to parse OCSP response");
287	return -1;	287	return -1;
288	}	288	}
@@ -311,9 +311,9 @@ tls_ocsp_verify_cb(SSL ssl, void arg)
311	return 1;	311	return 1;
312	}	312	}
313		313
314	tls_ocsp_ctx_free(ctx->ocsp_ctx);	314	tls_ocsp_free(ctx->ocsp);
315	ctx->ocsp_ctx = tls_ocsp_setup_from_peer(ctx);	315	ctx->ocsp = tls_ocsp_setup_from_peer(ctx);
316	if (ctx->ocsp_ctx != NULL) {	316	if (ctx->ocsp != NULL) {
317	if (ctx->config->verify_cert == 0 \|\| ctx->config->verify_time == 0)	317	if (ctx->config->verify_cert == 0 \|\| ctx->config->verify_time == 0)
318	return 1;	318	return 1;
319	res = tls_ocsp_process_response_internal(ctx, raw, size);	319	res = tls_ocsp_process_response_internal(ctx, raw, size);
@@ -330,79 +330,79 @@ tls_ocsp_verify_cb(SSL ssl, void arg)
330	const char *	330	const char *
331	tls_peer_ocsp_url(struct tls *ctx)	331	tls_peer_ocsp_url(struct tls *ctx)
332	{	332	{
333	if (ctx->ocsp_ctx == NULL)	333	if (ctx->ocsp == NULL)
334	return NULL;	334	return NULL;
335	return ctx->ocsp_ctx->ocsp_url;	335	return ctx->ocsp->ocsp_url;
336	}	336	}
337		337
338	const char *	338	const char *
339	tls_peer_ocsp_result(struct tls *ctx)	339	tls_peer_ocsp_result(struct tls *ctx)
340	{	340	{
341	if (ctx->ocsp_ctx == NULL)	341	if (ctx->ocsp == NULL)
342	return NULL;	342	return NULL;
343	if (ctx->ocsp_ctx->ocsp_result == NULL)	343	if (ctx->ocsp->ocsp_result == NULL)
344	return NULL;	344	return NULL;
345	return ctx->ocsp_ctx->ocsp_result->result_msg;	345	return ctx->ocsp->ocsp_result->result_msg;
346	}	346	}
347		347
348	int	348	int
349	tls_peer_ocsp_response_status(struct tls *ctx)	349	tls_peer_ocsp_response_status(struct tls *ctx)
350	{	350	{
351	if (ctx->ocsp_ctx == NULL)	351	if (ctx->ocsp == NULL)
352	return -1;	352	return -1;
353	if (ctx->ocsp_ctx->ocsp_result == NULL)	353	if (ctx->ocsp->ocsp_result == NULL)
354	return -1;	354	return -1;
355	return ctx->ocsp_ctx->ocsp_result->response_status;	355	return ctx->ocsp->ocsp_result->response_status;
356	}	356	}
357		357
358	int	358	int
359	tls_peer_ocsp_cert_status(struct tls *ctx)	359	tls_peer_ocsp_cert_status(struct tls *ctx)
360	{	360	{
361	if (ctx->ocsp_ctx == NULL)	361	if (ctx->ocsp == NULL)
362	return -1;	362	return -1;
363	if (ctx->ocsp_ctx->ocsp_result == NULL)	363	if (ctx->ocsp->ocsp_result == NULL)
364	return -1;	364	return -1;
365	return ctx->ocsp_ctx->ocsp_result->cert_status;	365	return ctx->ocsp->ocsp_result->cert_status;
366	}	366	}
367		367
368	int	368	int
369	tls_peer_ocsp_crl_reason(struct tls *ctx)	369	tls_peer_ocsp_crl_reason(struct tls *ctx)
370	{	370	{
371	if (ctx->ocsp_ctx == NULL)	371	if (ctx->ocsp == NULL)
372	return -1;	372	return -1;
373	if (ctx->ocsp_ctx->ocsp_result == NULL)	373	if (ctx->ocsp->ocsp_result == NULL)
374	return -1;	374	return -1;
375	return ctx->ocsp_ctx->ocsp_result->crl_reason;	375	return ctx->ocsp->ocsp_result->crl_reason;
376	}	376	}
377		377
378	time_t	378	time_t
379	tls_peer_ocsp_this_update(struct tls *ctx)	379	tls_peer_ocsp_this_update(struct tls *ctx)
380	{	380	{
381	if (ctx->ocsp_ctx == NULL)	381	if (ctx->ocsp == NULL)
382	return -1;	382	return -1;
383	if (ctx->ocsp_ctx->ocsp_result == NULL)	383	if (ctx->ocsp->ocsp_result == NULL)
384	return -1;	384	return -1;
385	return ctx->ocsp_ctx->ocsp_result->this_update;	385	return ctx->ocsp->ocsp_result->this_update;
386	}	386	}
387		387
388	time_t	388	time_t
389	tls_peer_ocsp_next_update(struct tls *ctx)	389	tls_peer_ocsp_next_update(struct tls *ctx)
390	{	390	{
391	if (ctx->ocsp_ctx == NULL)	391	if (ctx->ocsp == NULL)
392	return -1;	392	return -1;
393	if (ctx->ocsp_ctx->ocsp_result == NULL)	393	if (ctx->ocsp->ocsp_result == NULL)
394	return -1;	394	return -1;
395	return ctx->ocsp_ctx->ocsp_result->next_update;	395	return ctx->ocsp->ocsp_result->next_update;
396	}	396	}
397		397
398	time_t	398	time_t
399	tls_peer_ocsp_revocation_time(struct tls *ctx)	399	tls_peer_ocsp_revocation_time(struct tls *ctx)
400	{	400	{
401	if (ctx->ocsp_ctx == NULL)	401	if (ctx->ocsp == NULL)
402	return -1;	402	return -1;
403	if (ctx->ocsp_ctx->ocsp_result == NULL)	403	if (ctx->ocsp->ocsp_result == NULL)
404	return -1;	404	return -1;
405	return ctx->ocsp_ctx->ocsp_result->revocation_time;	405	return ctx->ocsp->ocsp_result->revocation_time;
406	}	406	}
407		407
408	int	408	int