From: Daniel Ruggeri Date: Wed, 14 Sep 2011 20:26:06 +0000 (+0000) Subject: Update proposal for SSLProxyMachineCertificateChainFile X-Git-Tag: 2.2.22~155 X-Git-Url: http://git.ipfire.org/?a=commitdiff_plain;h=cca4e3eb7d30129d0c493495be9aca900b2a4f31;p=thirdparty%2Fapache%2Fhttpd.git Update proposal for SSLProxyMachineCertificateChainFile git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/branches/2.2.x@1170835 13f79535-47bb-0310-9956-ffa450edef68 --- diff --git a/STATUS b/STATUS index 6af5b084d97..b77f0fe2b7f 100644 --- a/STATUS +++ b/STATUS @@ -120,15 +120,17 @@ PATCHES PROPOSED TO BACKPORT FROM TRUNK: +1: fuankg, gsmith * mod_ssl: Add SSLProxyMachineCertificateChainFile directive - Adds a new function in ssl_util_ssl.c SSL_X509_INFO_create_chain that will - construct a chain of trusted certificates. When a remote server requests + Uses openssl to construct a chain for each proxy cert. When a remote server requests a client certificate that is NOT the direct issuer of any available client certificate, the chain for that certificate will be used to trace it to a known CA and that client certificate will be used. - druggeri note: 2.2 documentation patch needed + Documentation patch now included, r1162103 also. Trunk patch: http://svn.apache.org/viewvc?view=revision&revision=1160863 - 2.2.x patch: http://people.apache.org/~druggeri/patches/httpd-2.2.19-SSLProxyMachineCertificateChainFile.patch + http://svn.apache.org/viewvc?view=revision&revision=1162103 + http://svn.apache.org/viewvc?view=revision&revision=1170833 + 2.2.x patch: http://people.apache.org/~druggeri/patches/httpd-2.2-SSLProxyMachineCertificateChainFile.patch +0 covener: needs r1162103 && needs druggeri's vote? + +1: druggeri * core: Add AllowOverrideList directive Discussed on mailing list http://marc.info/?l=apache-httpd-dev&m=131111915903270&w=2