[gnutls-devel] GnuTLS | gnutls-cli: Inconsistent OCSP behavior regarding intermediate depending on stapling (#981)

Development of GNU's TLS library gnutls-devel at lists.gnutls.org
Fri May 1 22:54:42 CEST 2020




Airtower commented:


That inconsistency does sound problematic, but stapling for intermediate certificates is actually possible since TLS 1.3, or with the obsolete Multiple Certificate Status Request Extension (RFC 6961). Unfortunately few webservers support it (Apache with mod_gnutls does).

Any fix should take multiple stapled responses into account.

-- 
Reply to this email directly or view it on GitLab: https://gitlab.com/gnutls/gnutls/-/issues/981#note_335194802
You're receiving this email because of your account on gitlab.com.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <https://lists.gnupg.org/pipermail/gnutls-devel/attachments/20200501/2e18ea13/attachment.html>


More information about the Gnutls-devel mailing list