policy/files/x509/log-ocsp.bro

OCSP

Enable logging of OCSP responses.

Namespace:OCSP
Source File:/scripts/policy/files/x509/log-ocsp.bro

Summary

Types

OCSP::Info: record The record type which contains the fields of the OCSP log.

Redefinitions

Log::ID: enum  

Events

OCSP::log_ocsp: event Event that can be handled to access the OCSP record as it is sent to the logging framework.

Detailed Interface

Types

OCSP::Info
Type:

record

ts: time &log

Time when the OCSP reply was encountered.

id: string &log

File id of the OCSP reply.

hashAlgorithm: string &log

Hash algorithm used to generate issuerNameHash and issuerKeyHash.

issuerNameHash: string &log

Hash of the issuer’s distingueshed name.

issuerKeyHash: string &log

Hash of the issuer’s public key.

serialNumber: string &log

Serial number of the affected certificate.

certStatus: string &log

Status of the affected certificate.

revoketime: time &log &optional

Time at which the certificate was revoked.

revokereason: string &log &optional

Reason for which the certificate was revoked.

thisUpdate: time &log

The time at which the status being shows is known to have been correct.

nextUpdate: time &log &optional

The latest time at which new information about the status of the certificate will be available.

The record type which contains the fields of the OCSP log.

Events

OCSP::log_ocsp
Type:event (rec: OCSP::Info)

Event that can be handled to access the OCSP record as it is sent to the logging framework.

Copyright 2016, The Bro Project. Last updated on December 12, 2017. Created using Sphinx 1.5.2.