Hi,
It seems certificateVerification="optionalNoCA" only works if the OCSP
is disabled.
In
Otherwise the OCSP check forces an error because it can't check anything...
How to "fix" that? Just document it? or return OK where we test
SSL_CVERIFY_O
On 29/06/2021 12:29, jean-frederic clere wrote:
Hi,
It seems certificateVerification="optionalNoCA" only works if the OCSP
is disabled.
In
Otherwise the OCSP check forces an error because it can't check anything...
How to "fix" that? Just do
On 29/06/2021 14:45, Mark Thomas wrote:
On 29/06/2021 12:29, jean-frederic clere wrote:
Hi,
It seems certificateVerification="optionalNoCA" only works if the OCSP
is disabled.
In
Otherwise the OCSP check forces an error because it can't chec
On 29/06/2021 15:19, jean-frederic clere wrote:
On 29/06/2021 14:45, Mark Thomas wrote:
On 29/06/2021 12:29, jean-frederic clere wrote:
Hi,
It seems certificateVerification="optionalNoCA" only works if the
OCSP is disabled.
In
Otherwise the
On 29/06/2021 18:22, Mark Thomas wrote:
On 29/06/2021 15:19, jean-frederic clere wrote:
On 29/06/2021 14:45, Mark Thomas wrote:
On 29/06/2021 12:29, jean-frederic clere wrote:
Hi,
It seems certificateVerification="optionalNoCA" only works if the
OCSP is disabled.
Hi,
This is an old thread (2021) but relevant to BZ 67061 [1].
In short, optionalNoCA doesn't work unless OCSP is also disabled.
Do we:
a) Always skip the OCSP check if optionalNoCA is used (and document this
for optionalNoCA)?
b) Leave the code unchanged and document that using optionalNoC
On 2023/09/26 10:48:23 Mark Thomas wrote:
> Hi,
>
> This is an old thread (2021) but relevant to BZ 67061 [1].
>
> In short, optionalNoCA doesn't work unless OCSP is also disabled.
>
> Do we:
>
> a) Always skip the OCSP check if optionalNoCA is used (and document this
> for optionalNoCA)?
>
>
