RSA Security logo

RSA BSAFE Cert-C
API Reference

CERT_REVOCATION Struct Reference

Stores information about a certificate's status.

The CERT_REVOCATION structure is returned by the C_CheckCertRevocation() function.

Data Fields
status An int value that indicates whether a certificate is valid, revoked, or has an unknown revocation status. One of the following certificate-status values is returned:
Certificate Status Description
CERT_REVOKED This constant indicates that the certificate has been revoked.
CERT_NOT_REVOKED This constant indicates that the certificate has not been revoked.
CERT_REVOCATION_UNKNOWN This constant indicates that the certificate revocation status is unknown (for example, a current CRL is not available.)
evidenceType An int value that indicates the type of revocation evidence contained in evidence. One of the following evidence types is returned:
Evidence Type Description
CRE_NONE This constant indicates that the evidence field of the CERT_REVOCATION structure contains a NULL_PTR.
CRE_CRL This constant indicates that the evidence field of the CERT_REVOCATION structure contains a pointer to a CRL_EVIDENCE structure.
CRE_OCSP This constant indicates that the evidence field of the CERT_REVOCATION structure contains a pointer to an OCSP_EVIDENCE structure.
CRE_ERROR This constant indicates that the evidence field of the CERT_REVOCATION structure contains a pointer to an int.
CRE_TRANSPORT_ERROR This constant indicates that the evidence field of the CERT_REVOCATION structure contains a pointer to a PKI_STATUS_INFO structure.
evidence A pointer to verifiable details about the certificate's revocation status.
  • If evidenceType is CRE_NONE, this field has a value of NULL_PTR.
  • If evidenceType is CRE_CRL, evidence points to a CRL_EVIDENCE structure. Details about the revocation status of this certificate can be found in the relevant entry of the crl field of the CRL_EVIDENCE data structure.
  • If evidenceType is CRE_OCSP, evidence points to an OCSP_EVIDENCE structure. Details about the revocation status of this certificate can be found in the extenObjs field of the OCSP_EVIDENCE data structure.
  • If evidenceType is CRE_ERROR, evidence points to an int. This int value contains a Cert-C error code.
  • If evidenceType is CRE_TRANSPORT_ERROR, evidence points to a PKI_STATUS_INFO structure.

#include <certpath.h> 

00249 typedef struct {
00250   int     status;             /* certificate status */
00251   int     evidenceType;       /* type of evidence */
00252   POINTER evidence;           /* evidence of status */
00253 } CERT_REVOCATION;
The documentation for this struct was generated from the following file:

RSA BSAFE® Cert-C 2.7 API Reference