Re: [PATCH v2] OCSP stapling for GnuTLS and NSS
Date: Thu, 15 Jan 2015 11:22:04 +0100
On gio, gen 15, 2015 at 12:08:42 +0100, Daniel Stenberg wrote:
> On Thu, 8 Jan 2015, Alessandro Ghedini wrote:
> >The only difference from  is that I fixed the NSS patch to shorten the
> >line longer than 79 chars like Kamil suggested. I also fixed some typos in
> >the commit messages.
> Thanks a lot for your work on this!
> I'd like to request that setting the new option returns an error if tried to
> be set when built to use a backend that doesn't support it! I figure it is
> most easily implemented by adding a new SSL backend function in the style of
> other Curl_ssl_* ones. Like perhaps Curl_ssl_cert_status_request() that
> could return TRUE/FALSE if supported. It'll help apps to know what to expect
> or not from a TLS based transfer.
> Do you agree?
Yes, that sounds like a good idea. I'll send a new version of the patchset
- application/pgp-signature attachment: Digital signature