Go to file
David Benjamin 6c7aed048c Client-side OCSP stapling support.
Remove the old implementation which was excessively general. This mirrors the
SCT support and adds a single boolean flag to request an OCSP response with no
responder IDs, extensions, or frills. The response, if received, is stored on
the SSL_SESSION so that it is available for (re)validation on session
resumption; Chromium revalidates the saved auth parameters on resume.

Server support is unimplemented for now. This API will also need to be adjusted
in the future if we implement RFC 6961.

Change-Id: I533c029b7f7ea622d814d05f934fdace2da85cb1
Reviewed-on: https://boringssl-review.googlesource.com/1671
Reviewed-by: Adam Langley <agl@google.com>
2014-08-29 00:39:33 +00:00
crypto Export CBS_get_any_asn1_element. 2014-08-28 00:45:30 +00:00
doc Inital import. 2014-06-20 13:17:32 -07:00
include/openssl Client-side OCSP stapling support. 2014-08-29 00:39:33 +00:00
ssl Client-side OCSP stapling support. 2014-08-29 00:39:33 +00:00
tool Add missing <errno.h> include. 2014-08-26 23:24:02 +00:00
util Add PKCS#12 parser. 2014-08-25 21:47:02 +00:00
.clang-format Inital import. 2014-06-20 13:17:32 -07:00
.gitignore Inital import. 2014-06-20 13:17:32 -07:00
BUILDING Increase minimum required cmake version 2014-08-18 17:23:37 +00:00
CMakeLists.txt Increase minimum required cmake version 2014-08-18 17:23:37 +00:00