Project

General

Profile

Actions
Copy link

Bug #16195

open

acme 0.9_1 ocsp must-staple deprecated from let's encrypt

Added by David Horn 13 days ago.

Status:
New
Priority:
Normal
Assignee:
-
Category:
ACME
Target version:
-
Start date:
Due date:
% Done:

0%

Estimated time:
Plus Target Version:
Affected Version:
All
Affected Plus Version:
25.03
Affected Architecture:
All

Description

Please remove the ui elements and variable handling code for ocsp must-staple in the pfsense acme package.

Including the ocsp must-staple value to "true" causes a fatal error in obtaining / renewing a certificate.

https://letsencrypt.org/2024/12/05/ending-ocsp/

May 7, 2025
Prior to this date we will have added CRL URLs to certificates
On this date we will drop OCSP URLs from certificates
On this date all requests including the OCSP Must Staple extension will fail

No data to display

Actions
Copy link

Also available in: Atom PDF