[prev in list] [next in list] [prev in thread] [next in thread] 

List:       openssl-users
Subject:    Re: [openssl-users] OCSP request / response over HTTP-GET
From:       Erwann ABALEA <erwann.abalea () keynectis ! com>
Date:       2011-06-27 8:50:43
Message-ID: 20110627085043.GL32019 () keynectis ! com
[Download RAW message or body]

Hodie V Kal. Iul. MMXI, Sugimoto, Koichi - GlobalSign K.K. scripsit:
> It seems that OpenSSL does not compliant to RFC 5019.
> Are there anyone prepareing to develop HTTP-GET based OCSP command?
> As for server, malformedRequest (1) is returned if received HTTP-GET based
> ocsp request.

RFC5019 is "The Lightweight Online Certificate Status Protocol (OCSP)
Profile for High-Volume Environments". OpenSSL as a command-line tool
can't be used in a "high volume environment" (in fact, it quits when
it receives anything else than "POST" as a verb). If you have such
needs, then you're able to write your own, using OpenSSL API.

-- 
Erwann ABALEA <erwann.abalea@keynectis.com>
Département R&D
KEYNECTIS
______________________________________________________________________
OpenSSL Project                                 http://www.openssl.org
User Support Mailing List                    openssl-users@openssl.org
Automated List Manager                           majordomo@openssl.org
[prev in list] [next in list] [prev in thread] [next in thread]