[strongSwan] OCSP and CDP

Modster, Anthony Anthony.Modster at Teledyne.com
Thu Dec 19 18:30:07 CET 2019


I will take a look, I may write a custom plugin or try python w/openssl

-----Original Message-----
From: Tobias Brunner <tobias at strongswan.org> 
Sent: Thursday, December 19, 2019 9:25 AM
To: Modster, Anthony <Anthony.Modster at Teledyne.com>; users at lists.strongswan.org
Subject: Re: [strongSwan] OCSP and CDP

---External Email---

Hi Anthony,

> ? is there a developers guide for writing plugins

[1] has some general information and there are a lot of plugins you could have a look at.

> ? what would the plugin do

Process OCSP requests and return responses (probably via HTTP) and/or do the same for CRLs.

> ? does (RFC 6960) apply

If you implement an OCSP server, sure.

Also, the x509 plugin does not actually support parsing OCSP requests or generating OCSP responses because strongSwan currently only needs the reverse.



More information about the Users mailing list