[gnutls-devel] GnuTLS | OCSP: server does not request client OCSP staples (#876)
Development of GNU's TLS library
gnutls-devel at lists.gnutls.org
Sun Dec 15 20:20:09 CET 2019
Nikos Mavrogiannopoulos created an issue: https://gitlab.com/gnutls/gnutls/issues/876
According to [TLS1.3](https://tools.ietf.org/html/rfc8446#section-4.4.2.1) a server can request a client to send OCSP staples during the CertificateVerify by sending an empty "status_request" extension. However we seem to be sending such OCSP staples even when this extension is not present (see `tests/tls13/ocsp-client.c`).
--
Reply to this email directly or view it on GitLab: https://gitlab.com/gnutls/gnutls/issues/876
You're receiving this email because of your account on gitlab.com.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <https://lists.gnupg.org/pipermail/gnutls-devel/attachments/20191215/7b4abd1d/attachment.html>
More information about the Gnutls-devel
mailing list