Gitiles
Code Review Sign In
git01.mediatek.com / haproxy / 4f3c87a5d942d4d0649c35805ff4e335970b87d4
commit4f3c87a5d942d4d0649c35805ff4e335970b87d4[log] [tgz]
authorEmeric Brun <ebrun@haproxy.com>Fri Jun 20 15:46:13 2014 +0200
committerWilly Tarreau <w@1wt.eu>Mon Jun 23 12:14:47 2014 +0200
treed07daabd75e39db46deb7dc46aff052e4baf906a
parent13a6b48e241c0a50b501446992ab4fda2529f317 [diff]
BUG/MEDIUM: ssl: Fix to not serve expired OCSP responses.

For some browsers (firefox), an expired OCSP Response causes unwanted behavior.

Haproxy stops serving OCSP response if nextupdate date minus
the supported time skew (#define OCSP_MAX_RESPONSE_TIME_SKEW) is
in the past.
1 file changed
tree: d07daabd75e39db46deb7dc46aff052e4baf906a
  1. contrib/
  2. doc/
  3. ebtree/
  4. examples/
  5. include/
  6. src/
  7. tests/
  8. .gitignore
  9. CHANGELOG
  10. LICENSE
  11. Makefile
  12. README
  13. ROADMAP
  14. SUBVERS
  15. VERDATE
  16. VERSION