git.ipfire.org Git - thirdparty/squid.git/commit

Forward a StoreEntry holding the bumped secure connection establishment
error page from the server-side code (which generates the error) to the
client-side code (which delays the error until the first encrypted
request comes). This allows Squid to display the error page to the user
(using secure connection) when bumping intercepted SSL connections. The
code still needs more polishing, including generating errors with host
names and not IP addresses (when possible).

The peeked server certificate is now stored in
ConnStateData::bumpErrorEntry. This allows us to mimic the certificate
of dropped server connections.

Load signing certificate and key when initializing a tproxy-enabled
https_port.

Fixed debugging when opening a peeking connection.

author	Christos Tsantilas <chtsanti@users.sourceforge.net>
	Tue, 20 Dec 2011 15:35:27 +0000 (17:35 +0200)
committer	Christos Tsantilas <chtsanti@users.sourceforge.net>
	Tue, 20 Dec 2011 15:35:27 +0000 (17:35 +0200)
commit	061bbdecd2c1981f70aa8da4fb1a2e2eb3a0a1e5
tree	8695de1641d0dc10e28931bcd973490356e327b0	tree \| snapshot
parent	9a90aacefcc5fd89985dd260d9bf3b2b755cee27	commit \| diff

src/cache_cf.cc		diff \| blob \| blame \| history
src/client_side.cc		diff \| blob \| blame \| history
src/client_side.h		diff \| blob \| blame \| history
src/client_side_reply.cc		diff \| blob \| blame \| history
src/client_side_reply.h		diff \| blob \| blame \| history
src/forward.cc		diff \| blob \| blame \| history
src/ssl/ErrorDetail.h		diff \| blob \| blame \| history
src/ssl/ServerPeeker.cc		diff \| blob \| blame \| history
src/ssl/ServerPeeker.h		diff \| blob \| blame \| history