Docs: add notes on library version limitations on OCSP stapling. Bug 1664

author: Jeremy Harris <jgh146exb@wizmail.org> 2015-08-02 14:33:56 +0100
committer: Jeremy Harris <jgh146exb@wizmail.org> 2015-08-02 14:33:56 +0100
commit: 82d14d6a7ecbaf515d7feb30c351c92a4b429f43 (patch)
tree: 2e567950c261ff2d8ea225c06a607f18952deb00 /doc/doc-docbook
parent: 9196d5bf543d75a81ae0825a352920d27241c325 (diff)
1 files changed, 7 insertions, 1 deletions
diff --git a/doc/doc-docbook/spec.xfpt b/doc/doc-docbook/spec.xfpt
index e1eaf3f70..69a810c0c 100644
--- a/doc/doc-docbook/spec.xfpt
+++ b/doc/doc-docbook/spec.xfpt
@@ -16668,6 +16668,10 @@ must if set expand to the absolute path to a file which contains a current
 status proof for the server's certificate, as obtained from the
 Certificate Authority.
 
+.new
+Usable for GnuTLS 3.4.4 or 3.3.17 or OpenSSL 1.1.0 (or later).
+.wen
+
 
 .option tls_on_connect_ports main "string list" unset
 .cindex SSMTP
@@ -26754,7 +26758,9 @@ starts retrying to fetch an OCSP proof some time before its current
 proof expires.  The downside is that it requires server support.
 
 Unless Exim is built with the support disabled,
-or with GnuTLS earlier than version 3.1.3,
+.new
+or with GnuTLS earlier than version 3.3.16 / 3.4.8
+.wen
 support for OCSP stapling is included.
 
 There is a global option called &%tls_ocsp_file%&.
author	Jeremy Harris <jgh146exb@wizmail.org>	2015-08-02 14:33:56 +0100
committer	Jeremy Harris <jgh146exb@wizmail.org>	2015-08-02 14:33:56 +0100
commit	82d14d6a7ecbaf515d7feb30c351c92a4b429f43 (patch)
tree	2e567950c261ff2d8ea225c06a607f18952deb00 /doc/doc-docbook
parent	9196d5bf543d75a81ae0825a352920d27241c325 (diff)