diff options
| author | beck <> | 2016-11-04 05:13:13 +0000 |
|---|---|---|
| committer | beck <> | 2016-11-04 05:13:13 +0000 |
| commit | 75d6d2ca7daaedc9ebe7930439f3c31b2fbf5f60 (patch) | |
| tree | beb66ed0e210e9dcdda1ae81df9eaf1ac13b84b6 /src/lib/libtls/tls_internal.h | |
| parent | 634ebace8103bf766f556cfe3aefdcdc5974a402 (diff) | |
| download | openbsd-75d6d2ca7daaedc9ebe7930439f3c31b2fbf5f60.tar.gz openbsd-75d6d2ca7daaedc9ebe7930439f3c31b2fbf5f60.tar.bz2 openbsd-75d6d2ca7daaedc9ebe7930439f3c31b2fbf5f60.zip | |
Add ocsp_require_stapling config option for tls - allows a connection
to indicate that it requires the peer to provide a stapled OCSP response
with the handshake. Provide a "-T muststaple" for nc that uses it.
ok jsing@, guenther@
Diffstat (limited to 'src/lib/libtls/tls_internal.h')
| -rw-r--r-- | src/lib/libtls/tls_internal.h | 3 |
1 files changed, 2 insertions, 1 deletions
diff --git a/src/lib/libtls/tls_internal.h b/src/lib/libtls/tls_internal.h index fde4066f7c..0112ceedb9 100644 --- a/src/lib/libtls/tls_internal.h +++ b/src/lib/libtls/tls_internal.h | |||
| @@ -1,4 +1,4 @@ | |||
| 1 | /* $OpenBSD: tls_internal.h,v 1.45 2016/11/03 10:05:32 jsing Exp $ */ | 1 | /* $OpenBSD: tls_internal.h,v 1.46 2016/11/04 05:13:13 beck Exp $ */ |
| 2 | /* | 2 | /* |
| 3 | * Copyright (c) 2014 Jeremie Courreges-Anglas <jca@openbsd.org> | 3 | * Copyright (c) 2014 Jeremie Courreges-Anglas <jca@openbsd.org> |
| 4 | * Copyright (c) 2014 Joel Sing <jsing@openbsd.org> | 4 | * Copyright (c) 2014 Joel Sing <jsing@openbsd.org> |
| @@ -64,6 +64,7 @@ struct tls_config { | |||
| 64 | int dheparams; | 64 | int dheparams; |
| 65 | int ecdhecurve; | 65 | int ecdhecurve; |
| 66 | struct tls_keypair *keypair; | 66 | struct tls_keypair *keypair; |
| 67 | int ocsp_require_stapling; | ||
| 67 | uint32_t protocols; | 68 | uint32_t protocols; |
| 68 | int verify_cert; | 69 | int verify_cert; |
| 69 | int verify_client; | 70 | int verify_client; |