-*- coding: utf-8 -*-
Changes with Apache 2.4.42
+ *) mod_ssl: OCSP does not apply to proxy mode. [Yann Ylavic]
+
*) mod_proxy_html, mod_xml2enc: Fix build issues with macOS due to r1864469
[Jim Jagielski]
PATCHES ACCEPTED TO BACKPORT FROM TRUNK:
[ start all new proposals below, under PATCHES PROPOSED. ]
- *) mod_ssl: OCSP does not apply to proxy mode
- trunk patch: http://svn.apache.org/r1865740
- 2.4.x patch: svn merge -c 1865740 ^/httpd/httpd/trunk .
- +1: ylavic, jorton, minfrin
-
PATCHES PROPOSED TO BACKPORT FROM TRUNK:
/*
* Perform OCSP-based revocation checks
*/
- if (ok && ((sc->server->ocsp_mask & SSL_OCSPCHECK_CHAIN) ||
- (errdepth == 0 && (sc->server->ocsp_mask & SSL_OCSPCHECK_LEAF)))) {
+ if (ok && ((mctx->ocsp_mask & SSL_OCSPCHECK_CHAIN) ||
+ (errdepth == 0 && (mctx->ocsp_mask & SSL_OCSPCHECK_LEAF)))) {
/* If there was an optional verification error, it's not
* possible to perform OCSP validation since the issuer may be
* missing/untrusted. Fail in that case. */