[gnutls-devel] GnuTLS | WIP: Add option to store all stapled OCSP responses to gnutls-cli (!1189)

Development of GNU's TLS library gnutls-devel at lists.gnutls.org
Fri Feb 7 12:29:57 CET 2020




Tim Rühsen commented:


Want to add:
- amazon.com has a stapled OCSP response
- libgnutls requests OCSP stapling by default (`gnutls_ocsp_status_request_enable_client(session, NULL, 0, NULL)` is not explicitly needed. Checked with wireshark.)
- RFC6961 (TLS Multiple Certificate Status Request Extension) is currently not supported by libgnutls

@airtower Do you know any website that uses multi-stapling even if not requested ? Or is STATUS_REQUEST_V2 default with TLS1.3 ?

-- 
Reply to this email directly or view it on GitLab: https://gitlab.com/gnutls/gnutls/-/merge_requests/1189#note_284183765
You're receiving this email because of your account on gitlab.com.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <https://lists.gnupg.org/pipermail/gnutls-devel/attachments/20200207/ee39677e/attachment.html>


More information about the Gnutls-devel mailing list