TLS server: OCSP stapling
This adds support for hostapd-as-authentication-server to be build with the internal TLS implementation and OCSP stapling server side support. This is more or less identical to the design used with OpenSSL, i.e., the cached response is read from the ocsp_stapling_response=<file> and sent as a response if the client requests it during the TLS handshake. Signed-off-by: Jouni Malinen <jouni@qca.qualcomm.com>
This commit is contained in:
Jouni Malinen
Jouni Malinen
parent
8adce07a73
commit
bca0872dd5
6 changed files with 120 additions and 1 deletions
|
|
@ -331,6 +331,10 @@ int tls_global_set_params(void *tls_ctx,
|
|||
return -1;
|
||||
}
|
||||
|
||||
if (params->ocsp_stapling_response)
|
||||
cred->ocsp_stapling_response =
|
||||
os_strdup(params->ocsp_stapling_response);
|
||||
|
||||
return 0;
|
||||
#else /* CONFIG_TLS_INTERNAL_SERVER */
|
||||
return -1;
|
||||
|
|
|
|||
Loading…
Add table
Add a link
Reference in a new issue