Skip to content
/ OCSPCache Public

Making OCSP requests and caching OCSP responses on iOS.

License

GPL-3.0 license
4 stars 4 forks Branches Tags Activity
Star
Notifications You must be signed in to change notification settings

Psiphon-Labs/OCSPCache

BranchesTags

Repository files navigation

OCSPCache

OCSPCache is used for making OCSP requests and caching OCSP responses.

Testing

Prerequisites

Install OpenSSL 1.0.2r

https://github.com/openssl/openssl/releases/tag/OpenSSL_1_0_2r

Install CocoaPods

https://cocoapods.org/

Setup

Generate Certificates for testing

Run setup.sh in ./Example/Tests/Certs/DemoCA/

Install the root certificate on the simulator

  • Open Finder and drag ./Example/Tests/Certs/DemoCA/CA/root/root_CA.crt onto the simulator window
  • Click allow
  • Navigate in the simulator to Settings->Profiles and click on the downloaded profile
  • Click install
  • Navigate in the simulator to Settings->About->Certificate Trust Settings
  • Enable the switch "Enable Full Trust For Root Certificates" for the installed certificate

Start the OCSP Servers

Run the root OCSP Server run_root_ocsp_server.sh.

Run the intermediate OCSP Server run_intermediate_ocsp_server.sh.

Setup Project

  • Run pod install in ./Example
  • Open OCSPCache.xcworkspace with Xcode

Run Tests

Test using the simulator or ensure that the device being used for testing has access to the OCSP server running locally.

Revoking Certificates

Revoke the certificate with local OCSP URLs: revoke_local_ocsp_urls_cert.sh.

Revoke the intermediate certificate: revoke_intermediate_CA_cert.sh.

About

Making OCSP requests and caching OCSP responses on iOS.

Resources

Readme

License

GPL-3.0 license
Activity
Custom properties

Stars

4 stars

Watchers

12 watching

Forks

4 forks
Report repository

Releases

No releases published

Packages

No packages published

Contributors 2

  •  
  •  

Languages