cURL / Mailing Lists / curl-library / Single Mail


Re: [PATCH v3] OCSP stapling for GnuTLS and NSS

From: Daniel Stenberg <>
Date: Fri, 16 Jan 2015 23:27:24 +0100 (CET)

On Thu, 15 Jan 2015, Alessandro Ghedini wrote:

> This new version returns an error when trying to set the
> CURLOPT_SSL_VERIFYSTATUS option if the SSL backend doesn't support the
> status_request extension. I also updated the CURLOPT_SSL_VERIFYSTATUS
> manpage to reflect this.

I merged your patches just now with some minor edits. The NSS code caused
warnings due to a lack of including the ocsp.h file, so I made that dependent
of version - which I'm not sure we need but it worked for me.

I also edited symbols-in-version to make test 1119 pass and some other minor

Great stuff. Thanks again Alessandro!

Now, let's get back to that OpenSSL version of the OCSP patch to see where we
are with that and how to get it right!

List admin:
Received on 2015-01-16