]> git.ipfire.org Git - thirdparty/squid.git/commit
projects / thirdparty / squid.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: bfa0977) | patch
Fix peek-and-splice mode: certificate validation for domain mismatched errors
authorChristos Tsantilas <chtsanti@users.sourceforge.net>
Fri, 19 Dec 2014 17:54:32 +0000 (19:54 +0200)
committerChristos Tsantilas <chtsanti@users.sourceforge.net>
Fri, 19 Dec 2014 17:54:32 +0000 (19:54 +0200)
commit9db3fdb3a6ad6afb982af319540d042ac201150e
treecf6bf3468c3295d0b1340d7a3628d0bc762eefb6tree
parentbfa0977917b3f2239615878e6e07e6e8eb0f9020commit | diff
Fix peek-and-splice mode: certificate validation for domain mismatched errors

Currently squid does not check for domain mismatched errors while validates the
server certificate on peek and splice mode, even if the server hostname is known
from SNI info or from CONNECT request string.

This is a Measurement Factory project
src/ssl/PeerConnector.cc diff | blob | blame | history
Mirror of https://github.com/squid-cache/squid.git