search:
summary | log | graphiclog1 | graphiclog2 | commit | commitdiff | tree | refs | edit | fork
(parent: b21ed9e) | patch
When verifying an OCSP response included in TLS don't fail if the response is old.
commitc7c228b0619cfdc27e2f156d67e7732ee0b02829
authorNikos Mavrogiannopoulos <nmav@gnutls.org>
Tue, 6 Nov 2012 21:47:02 +0000 (6 22:47 +0100)
committerNikos Mavrogiannopoulos <nmav@gnutls.org>
Tue, 6 Nov 2012 21:47:04 +0000 (6 22:47 +0100)
treeb18b04ee8ddf2fe21854815d3a57382898ee7e99tree | snapshot (tar.gz zip)
parentb21ed9ee52cf8678d048075fa56ceecf6fa69241commit | diff
When verifying an OCSP response included in TLS don't fail if the response is old.

That is to avoid creating more problems for a server that included an
old response, from a server that included none.
Also renamed: Too old -> Superseded.
lib/gnutls_cert.c diff | blob | blame | history
lib/gnutls_x509.c diff | blob | blame | history
lib/includes/gnutls/gnutls.h.in diff | blob | blame | history
lib/x509/verify.c diff | blob | blame | history
Implementation of the SSL/TLS protocol