]> git.ipfire.org Git - thirdparty/hostap.git/commit
projects / thirdparty / hostap.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: 2be1bca) | patch
OpenSSL: Allow no OCSP response when resuming a session with TLS 1.3
authorJouni Malinen <quic_jouni@quicinc.com>
Mon, 2 May 2022 13:54:13 +0000 (16:54 +0300)
committerJouni Malinen <j@w1.fi>
Mon, 2 May 2022 15:07:43 +0000 (18:07 +0300)
commit10746875e27ade1cc38caa1d0eb921f38fcb0058
treeb3295ec99415ff8e2f7319e50441b6375b3f22b4tree
parent2be1bcaf7433a4211028db377b026aa0d4ee063ecommit | diff
OpenSSL: Allow no OCSP response when resuming a session with TLS 1.3

TLS 1.3 sends the OCSP response with the server Certificate message.
Since that Certificate message is not sent when resuming a session,
there can be no new OCSP response. Allow this since the OCSP response
was validated when checking the initial certificate exchange.

Signed-off-by: Jouni Malinen <quic_jouni@quicinc.com>
src/crypto/tls_openssl.c diff | blob | blame | history
Unnamed repository; edit this file 'description' to name the repository.