doc: improved OCSP description and mention RFC7633

author: Nikos Mavrogiannopoulos <nmav@redhat.com> 2016-06-01 14:38:32 +0200
committer: Nikos Mavrogiannopoulos <nmav@redhat.com> 2016-06-01 16:00:03 +0200
commit: 5e6f4e646e61a6fda9ebc101c62eb4a6c9d9dcd5 (patch)
tree: 130e689b7c6f7cc26f843e848b7cb37d1b537292 /doc/cha-intro-tls.texi
parent: a114c883307feaccaab318ceb006760e67778b18 (diff)
download: gnutls-5e6f4e646e61a6fda9ebc101c62eb4a6c9d9dcd5.tar.gz
1 files changed, 1 insertions, 9 deletions
diff --git a/doc/cha-intro-tls.texi b/doc/cha-intro-tls.texi
index 2c55b5675f..550da1ef7e 100644
--- a/doc/cha-intro-tls.texi
+++ b/doc/cha-intro-tls.texi
@@ -600,15 +600,7 @@ may periodically run @code{ocsptool} (see @ref{ocsptool Invocation}) to obtain
 its certificate revocation status and serve it to the clients. That
 way a client avoids an additional connection to the OCSP server.
 
-@showfuncD{gnutls_certificate_set_ocsp_status_request_function,gnutls_certificate_set_ocsp_status_request_file,gnutls_ocsp_status_request_enable_client,gnutls_ocsp_status_request_is_checked}
-
-A server is required to provide the OCSP server's response using the @funcref{gnutls_certificate_set_ocsp_status_request_file}.
-The response may be obtained periodically using the following command.
-
-@example
-ocsptool --ask --load-cert server_cert.pem --load-issuer the_issuer.pem
-         --load-signer the_issuer.pem --outfile ocsp.response
-@end example
+See @ref{OCSP stapling} for further information.
 
 Since version 3.1.3 GnuTLS clients transparently support the certificate status
 request.
author	Nikos Mavrogiannopoulos <nmav@redhat.com>	2016-06-01 14:38:32 +0200
committer	Nikos Mavrogiannopoulos <nmav@redhat.com>	2016-06-01 16:00:03 +0200
commit	5e6f4e646e61a6fda9ebc101c62eb4a6c9d9dcd5 (patch)
tree	130e689b7c6f7cc26f843e848b7cb37d1b537292 /doc/cha-intro-tls.texi
parent	a114c883307feaccaab318ceb006760e67778b18 (diff)
download	gnutls-5e6f4e646e61a6fda9ebc101c62eb4a6c9d9dcd5.tar.gz