From f3c4c6eb27b4f657ab0c290154c9992dcc8cf641 Mon Sep 17 00:00:00 2001
From: Andrea Dell'Amico <adellam@isti.cnr.it>
Date: Tue, 2 Jan 2018 14:43:43 +0100
Subject: [PATCH] letsencrypt and haproxy: disable the OCSP 'must staple'
 option.

---
 haproxy/templates/haproxy-letsencrypt-acme.sh.j2 | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/haproxy/templates/haproxy-letsencrypt-acme.sh.j2 b/haproxy/templates/haproxy-letsencrypt-acme.sh.j2
index 33efcf03..0d274fab 100644
--- a/haproxy/templates/haproxy-letsencrypt-acme.sh.j2
+++ b/haproxy/templates/haproxy-letsencrypt-acme.sh.j2
@@ -33,7 +33,7 @@ fi
 # Run the OCSP stapling script
 if [ -x /usr/local/bin/hapos-upd ] ; then
     echo "Run the OCSP stapling updater script" >> $LE_LOG_DIR/haproxy.log
-    /usr/local/bin/hapos-upd --cert {{ haproxy_cert_dir }}/haproxy.pem -v {{ letsencrypt_acme_certs_dir }}/fullchain -s {{ haproxy_admin_socket }} >> $LE_LOG_DIR/haproxy.log 2>&1
+    /usr/local/bin/hapos-upd --cert {{ haproxy_cert_dir }}/haproxy.pem -v {{ letsencrypt_acme_certs_dir }}/fullchain -s {{ haproxy_admin_socket }} -v - >> $LE_LOG_DIR/haproxy.log 2>&1
 else
     echo "No OCPS stapling updater script" >> $LE_LOG_DIR/haproxy.log
 fi