git.ipfire.org Git - thirdparty/squid.git/commit

]> git.ipfire.org Git - thirdparty/squid.git/commit

projects / thirdparty / squid.git / commit

author	Joe Crayne <oh.hellojoe@gmail.com>
	Sun, 13 Jul 2014 03:15:01 +0000 (21:15 -0600)
committer	Amos Jeffries <squid3@treenet.co.nz>
	Sun, 13 Jul 2014 03:15:01 +0000 (21:15 -0600)
commit	79c445144ccdd41d9740154acf0765ac45b16e18
tree	0204615ea0dc28f0c7fb67d1ec5065815cc29f3f	tree
parent	5b8f8828e4c5e24b1e6649ac08a779625037f159	commit \| diff

Bug 3966: Add KeyEncipherment when ssl-bump substitues RSA for EC.

Libnss3, which is used by Firefox to verify the certificate chain, has
different requirements for RSA keys than it does for EC keys. In particular,
RSA keys with the keyUsage extension, must set the KeyEncipherment flag.

This fix was brought to you by the Samizdat project.
http://samizdat.childrenofmay.org

src/ssl/gadgets.cc

diff | blob | blame | history

Mirror of https://github.com/squid-cache/squid.git

RSS Atom