From f65b634e8bcb5a68903da3488d8baf2269663b38 Mon Sep 17 00:00:00 2001
From: Sando <sandomir@tutanota.com>
Date: Thu, 5 Oct 2023 18:29:10 +0200
Subject: [PATCH] allow to enable OCSP stapling

---
 overlay/container/acmesh/usr/local/bin/generate-certs.sh | 4 ++++
 1 file changed, 4 insertions(+)

diff --git a/overlay/container/acmesh/usr/local/bin/generate-certs.sh b/overlay/container/acmesh/usr/local/bin/generate-certs.sh
index ce844d5fe..27646ab49 100755
--- a/overlay/container/acmesh/usr/local/bin/generate-certs.sh
+++ b/overlay/container/acmesh/usr/local/bin/generate-certs.sh
@@ -32,6 +32,10 @@ create_tls_certs()
         else acme_sh=""$acme_sh" --issue --"$challenge""
         fi
 
+        if [ "${ACME_OCSP_MUST_STAPLE:-false}" = 'true' ]
+        then acme_sh="$acme_sh --ocsp"
+        fi
+
         echo ">> Create certificates for domain(s) $domain ..."
         $acme_sh \
                 --keylength "$key_size" \