<!DOCTYPE html PUBLIC "-//W3C//DTD HTML 4.0 Transitional//EN" "http://www.w3.org/TR/REC-html40/loose.dtd">

<html lang="en">

<head>

<meta content="text/html; charset=US-ASCII" http-equiv="Content-Type">

<title>

GitLab

</title>

<style>img {

max-width: 100%; height: auto;

}

</style>

</head>

<body>

<div class="content">

<p class="details" style="font-style: italic; color: #777;">

<a href="https://gitlab.com/j29280">jgh</a> created an issue:

</p>

<div></div>

<h2 dir="auto">

<a id="user-content-description-of-the-feature" class="anchor" href="#description-of-the-feature" aria-hidden="true"></a>Description of the feature:</h2>

<p dir="auto">A way for the server application to know if the library sent an OCSP stapled certificate status.</p>

<p dir="auto">Complication: TLS1.3 allows for more than one certificate chain-element to be sent with associated status.  While a single

bit would be simple for the application to retrieve, and cover most current cases (where only the leaf element has status),

that is not complex enough for the general case.</p>

<p dir="auto">It has been suggested (issue 829) that gnutls_certificate_set_retrieve_function3() could be used for this, if access were

provided to the library default methods for identifying the staplings.</p>

<h2 dir="auto">

<a id="user-content-applications-that-this-feature-may-be-relevant-to" class="anchor" href="#applications-that-this-feature-may-be-relevant-to" aria-hidden="true"></a>Applications that this feature may be relevant to:</h2>

<p dir="auto">Anything wanting observability</p>

<h2 dir="auto">

<a id="user-content-is-this-feature-implemented-in-other-libraries-and-which" class="anchor" href="#is-this-feature-implemented-in-other-libraries-and-which" aria-hidden="true"></a>Is this feature implemented in other libraries (and which)</h2>

<p dir="auto">OpenSSL has a status-callback similar to gnutls_certificate_set_retrieve_function3().</p>

</div>

<div class="footer" style="margin-top: 10px;">

<p style="font-size: small; color: #777;">

—

<br>

Reply to this email directly or <a href="https://gitlab.com/gnutls/gnutls/issues/883">view it on GitLab</a>.

<br>

You're receiving this email because of your account on gitlab.com.

If you'd like to receive fewer emails, you can

<a href="https://gitlab.com/sent_notifications/2689aec8ed07713232189fa8aa0905bd/unsubscribe">unsubscribe</a>

from this thread or

adjust your notification settings.

<script type="application/ld+json">{"@context":"http://schema.org","@type":"EmailMessage","action":{"@type":"ViewAction","name":"View Issue","url":"https://gitlab.com/gnutls/gnutls/issues/883"}}</script>

</p>

</div>

</body>

</html>