policy/files/x509/log-ocsp.zeek

OCSP

Enable logging of OCSP responses.

Namespace:OCSP

Summary

Types

OCSP::Info: record The record type which contains the fields of the OCSP log.

Redefinitions

Log::ID: enum  

Events

OCSP::log_ocsp: event Event that can be handled to access the OCSP record as it is sent to the logging framework.

Detailed Interface

Types

OCSP::Info
Type:

record

ts: time &log

Time when the OCSP reply was encountered.

id: string &log

File id of the OCSP reply.

hashAlgorithm: string &log

Hash algorithm used to generate issuerNameHash and issuerKeyHash.

issuerNameHash: string &log

Hash of the issuer’s distingueshed name.

issuerKeyHash: string &log

Hash of the issuer’s public key.

serialNumber: string &log

Serial number of the affected certificate.

certStatus: string &log

Status of the affected certificate.

revoketime: time &log &optional

Time at which the certificate was revoked.

revokereason: string &log &optional

Reason for which the certificate was revoked.

thisUpdate: time &log

The time at which the status being shows is known to have been correct.

nextUpdate: time &log &optional

The latest time at which new information about the status of the certificate will be available.

The record type which contains the fields of the OCSP log.

Events

OCSP::log_ocsp
Type:event (rec: OCSP::Info)

Event that can be handled to access the OCSP record as it is sent to the logging framework.