-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
On 27/04/10 13:20, Davide Brini wrote:
> contrib/OCSP_check/OCSP_check.sh:
> New barebone script to demonstrate how to use $tls_serial_{n}
> to perform simple OCSP queries using OpenSSL command line
> "openssl ocsp". Minimal sanity checks to fail if user tries to
> use it without customizing.
>
> openvpn.8:
> Added some notes about $tls_serial_{n} format and usage to the
> existing description.
>
> ssl.c:
> correctly manage and export serial numbers of any size (as
> parsed by OpenSSL) into the environment. Set to empty string
> in case of errors, as 0 and negative numbers are all possible
> (although illegal) certificate serial numbers. Use an OpenSSL
> BIO object to do the job. Conforms to coding style guidelines.
>
> See the discussion at
>
> http://article.gmane.org/gmane.network.openvpn.devel/3588
>
> for more details.
>
> Signed-off-by: Davide Brini <[email protected]>
> ---
> contrib/OCSP_check/OCSP_check.sh | 89
> ++++++++++++++++++++++++++++++++++++++
> openvpn.8 | 7 +++-
> ssl.c | 27 ++++++++++-
> 3 files changed, 119 insertions(+), 4 deletions(-)
> create mode 100644 contrib/OCSP_check/OCSP_check.sh
>
This patch is now applied to the bugfix2.1 branch and merged into
allmerged. An updated tree is now available.
Commit fa47f0a36c2aeda972a94c93f8f83246306812a0
kind regards,
David Sommerseth
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.10 (GNU/Linux)
Comment: Using GnuPG with Fedora - http://enigmail.mozdev.org/
iEYEARECAAYFAkvXXhEACgkQDC186MBRfrqp6QCfSroMqJRTJ3xdZIHab2YMBxhE
TyoAoIgoym231GFcjDNhk9+Z5+WdMltx
=OtJi
-----END PGP SIGNATURE-----
