git.ipfire.org Git - thirdparty/haproxy.git/commit

]> git.ipfire.org Git - thirdparty/haproxy.git/commit

projects / thirdparty / haproxy.git / commit

author	Emmanuel Hocdet <manu@gandi.net>
	Tue, 10 Oct 2017 13:18:52 +0000 (15:18 +0200)
committer	Willy Tarreau <w@1wt.eu>
	Sun, 22 Oct 2017 08:01:26 +0000 (10:01 +0200)
commit	872085ce375c76723ff023d2a79e9d9a0852aa98
tree	0be128be81e95c0771990c9faafaa501302d272a	tree
parent	cbc6524a198400b96c28d226a0a042687b622dc0	commit \| diff

BUG/MINOR: ssl: ocsp response with 'revoked' status is correct

ocsp_status can be 'good', 'revoked', or 'unknown'. 'revoked' status
is a correct status and should not be dropped.
In case of certificate with OCSP must-stapling extension, response with
'revoked' status must be provided as well as 'good' status.

This patch can be backported in 1.7, 1.6 and 1.5.

src/ssl_sock.c

diff | blob | blame | history

Mirror of https://github.com/haproxy/haproxy.git

RSS Atom