Changeset 94cb972 in mod_gnutls for src/gnutls_hooks.c


Ignore:
Timestamp:
May 29, 2016, 6:06:59 PM (4 years ago)
Author:
Thomas Klute <thomas2.klute@…>
Branches:
debian/master, debian/stretch-backports, master, upstream
Children:
20f8e99
Parents:
b674e95
Message:

Minimal OCSP stapling implementation using externally provided response

Works if the configured file contains a valid and current OCSP
response. Note that the module does not yet check those conditions,
the file is just read and forwarded to GnuTLS.

File:
1 edited

Legend:

Unmodified
Added
Removed
  • src/gnutls_hooks.c

    rb674e95 r94cb972  
    2121
    2222#include "mod_gnutls.h"
     23#include "gnutls_ocsp.h"
    2324#include "http_vhost.h"
    2425#include "ap_mpm.h"
     
    156157    /* Set Anon credentials */
    157158    gnutls_credentials_set(session, GNUTLS_CRD_ANON, ctxt->sc->anon_creds);
     159
     160    if (ctxt->sc->ocsp_response_file != NULL)
     161    {
     162        gnutls_certificate_set_ocsp_status_request_function(ctxt->sc->certs,
     163                                                            mgs_get_ocsp_response,
     164                                                            ctxt);
     165    }
    158166
    159167#ifdef ENABLE_SRP
Note: See TracChangeset for help on using the changeset viewer.