This callback is used for signing OCSP requests. It enables the application to add signatures to the outgoing requests. When the Toolkit gets to the point of its processing where OCSP signing occurs, this callback directs the Toolkit to call back the application. The application will then create the signature on the token.
Once the application completes its processing, it returns a 0 or 1 to the Toolkit. The values are as follows:
VTK_OK--indicates that the OCSP signature has been added, the Toolkit can continue with its processing.
1--indicates an error was encountered when the application tried to add the signature, the Toolkit should not add the certificate.
Parameters
userHdl
Parameter that the Toolkit calls. The application provides this parameter.
digest
DER encoding of hashed data bytes.
sigout
Buffer that the Toolkit allocates for the application to store the resulting signature. Note: The application uses the length parameter to set the size of the signature written.
maxSigOutBuf
Size of the sigOut buffer allocated by the Toolkit.
padding
Type of padding requests. Use 1 to request PKCS#1 padding.
Notes
OCSP requests are not required to be signed.
This callback is set through the Vtk_CtxtSetOption.