[exim-dev] [Bug 1664] OSCP stapling with GnuTLS results in d…

Top Page
Delete this message
Reply to this message
Author: admin
Date:  
To: exim-dev
Subject: [exim-dev] [Bug 1664] OSCP stapling with GnuTLS results in dropped connections
https://bugs.exim.org/show_bug.cgi?id=1664

--- Comment #3 from Jeremy Harris <jgh146exb@???> ---
Further: reproducible using the "client-ssl" utility from Exim's
testsuite, against the current Exim HEAD, but not when using
the "client-gnutls" utility. The former is built with OpenSSL,
the latter with GnuTLS 3.3.16, and packet capture shows that the latter
is requesting certificate status of the server despite not being
told to do so.

Specifically, gnutls_ocsp_status_request_enable_client() has
not been called.

This is another aspect of the bug, but it means that you cannot
repro the bug purely using GnuTLS-based applications.

--
You are receiving this mail because:
You are on the CC list for the bug.