the cmake finds the openssl dirs and libs right, but in the make process the ld says it cannot find the -lssl and -lcrypto, although they are exactly in those dirs it detected
using openssl 1.0.2k

zlib is required to compile civetweb, so it's better to add check

find_package(ZLIB REQUIRED)
MESSAGE(STATUS "ZLIB libraries: ${ZLIB_LIBRARIES}")
MESSAGE(STATUS "ZLIB version: ${ZLIB_VERSION_STRING}")

in CMakeLists.txt (near find_package(OPENSSL REQUIRED))

First of all thank you for wrapping the OpenSSL calls in a webserver interface, very useful!

Problem: Regardless which digest algorithm is specified in the timestamp request, uts-server always applies the same digest algorithm to the timestamp response. Example:
signtool sign /sha1 <CodeSignCert> /fd sha512 /tr http://uts-server /td sha512 file.exe

Expected result: The code signature as well as the timestamp both use SHA512.
Actual behaviour: While the code signature is using SHA512, the timestamp is applied with a SHA256 digest. Changing the /td in the example parameter to any other value has no effect, uts-server always uses SHA256.

It seems that the code to select the digest algorithm is commented out in src/lib/rfc3161.c lin 154+ but I don't know enough about the timestamp query structure on how to extract this value.
Using TS_CONF_set_signer_digest(conf, section, NULL, resp_ctx) I can set the digest algorithm to something else than sha256 via the uts-server configuration file (eg signer_digest = sha512), but then the algorithm is just hardcoded to something else and still not picked up from the request.

Hi, thank you so much for this project.

I'm trying to dockerize this application for our use-case (multiple servers in a swarm) and for publishing on Dockerhub but I'm running into a couple problems.

It's funny because I dockerized civetweb as a play project and it worked fine.

There are 2 issues:

1. Log output is erratic apparently due to buffering issues. In Docker we don't daemon the process but rather let it run on the foreground and output to stdout. However only in Docker the log output is very erratic. If I make a request, the log is cut halfway and I have to make many more requests for the rest of the logs to come up and is buffered halfway again. Is there a variable or a setting to reduce or tune buffering?

2. This is most likely related to Docker and not to uts-server (although it doesn't happen with civetweb in docker): once docker is up and the service is running I cannot ctrl-c it, I can only stop it by killing the container. If I log into the container using bash and run the server on my own, it works just fine - both log output and killing it with ctrl-c.

Could you shed some light if possible?

in CMakeLists.txt
-DCIVETWEB_DISABLE_CGI=ON
is set twice, in 75 and 78 lines

and, just curiosity question: what's the sense of patching civetweb sources - replacing DATE with "110973"?

in order to make statically linked executable, add:

option(STATIC "static linked binary" OFF)

if (STATIC)
SET(CMAKE_FIND_LIBRARY_SUFFIXES ".a")
SET(BUILD_SHARED_LIBRARIES OFF)
SET(CMAKE_EXE_LINKER_FLAGS "-static")
endif (STATIC)

in CMakeLists.txt before first "find_package"

Hi

Script given for certificate generation in this project is created test certificates for time stamping( Which has no Trusted CA - Certificate Authority)

Can anyone provide the link or provider detail who can provide the Time stamping certificate with Trusted CA ?

/root/uts-server-master/src/lib/rfc3161.c: In function ‘get_ctxw’:
/root/uts-server-master/src/lib/rfc3161.c:73: error: ‘for’ loop initial declarations are only allowed in C99 mode
/root/uts-server-master/src/lib/rfc3161.c:73: note: use option -std=c99 or -std=gnu99 to compile your code
make[2]: *** [CMakeFiles/uts-server.dir/src/lib/rfc3161.c.o] Error 1
make[1]: *** [CMakeFiles/uts-server.dir/all] Error 2
make: *** [all] Error 2

Hi,

Is your product compatible with the PKCS11 standard ?
If not, is it possible to add this functionality?

Best regards,

Yxoti

"make" doesn't work because of removing "kakwa/civetweb" project

Try to build on FreeBSD 11, "cmake <...> && make" gives an error:
[ 15%] Performing patch step for 'civetweb'
Execute: 'cd /root/uts-server-master/civetweb-prefix/src/civetweb && sed -i s/DATE/"110973"/ src/main.c src/civetweb.c'

• cd /root/uts-server-master/civetweb-prefix/src/civetweb
• sed -i 's/DATE/"110973"/' src/main.c src/civetweb.c
  sed: 1: "src/main.c": unterminated substitute pattern
  *** Failed target: civetweb-prefix/src/civetweb-stamp/civetweb-patch

In FreeBSD sed, -i requires an backup extension (or ""). After adding -i "" in CMakeFiles/civetweb.dir/build.make, sed works ok.

Configuration:

• UTS Server on Linux.
• Using test certificates.
• Using 'c2patool' and specifying the local uts server as the ta_server for the c2patool manifest.

uts_server crashes when queried by c2patool.

Compiling statically linked executable (as described in issue #4 ), ends with error:

[100%] Linking C executable uts-server
/usr/bin/ld: undefined reference to symbol `__register_frame_info@@GCC_3.0' (try adding -lgcc_s)
//lib/libgcc_s.so.1: could not read symbols: Bad value
c++: error: linker command failed with exit code 1 (use -v to see invocation)
*** Error code 1

FreeBSD 11.0, CLang 3.8.0. Using gcc 4.9.4 - compiles ok.