On 2/14/19 2:20 PM, Jamil Nimeh wrote:
Whoops, forgot to look at RFC 6961. Over there, both revoked and structural failures are both supposed to yield bad_certificate_status_response alerts. I think what we have is conformant with the spec.
Ok, thanks for checking, let's leave the code as is. --Sean
