projects / mech_eap.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: 0268383) | patch
Add ocsp=3 configuration parameter for multi-OCSP
authorJouni Malinen <jouni@qca.qualcomm.com>
Tue, 22 Dec 2015 22:28:13 +0000 (00:28 +0200)
committerJouni Malinen <j@w1.fi>
Wed, 23 Dec 2015 22:54:30 +0000 (00:54 +0200)
commitd6b536f7e576d06e91b0cd7669eb2b73954826f6
treee3d3ea2ab5fdc226eb54e0698a4cba6f90c286aftree | snapshot
parent02683830b5a0b85b0d1594096060327f3c8a1e7dcommit | diff
Add ocsp=3 configuration parameter for multi-OCSP

ocsp=3 extends ocsp=2 by require all not-trusted certificates in the
server certificate chain to receive a good OCSP status. This requires
support for ocsp_multi (RFC 6961). This commit is only adding the
configuration value, but all the currently included TLS library wrappers
are rejecting this as unsupported for now.

Signed-off-by: Jouni Malinen <jouni@qca.qualcomm.com>
src/crypto/tls.h diff | blob | history
src/crypto/tls_gnutls.c diff | blob | history
src/crypto/tls_internal.c diff | blob | history
src/crypto/tls_openssl.c diff | blob | history
src/eap_peer/eap_tls_common.c diff | blob | history
wpa_supplicant/wpa_supplicant.conf diff | blob | history
Moonshot GSS-API mechanism