httpd-bugs mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From bugzi...@apache.org
Subject DO NOT REPLY [Bug 47055] SSLVerifyClient + Directory doesn't use cache sessions
Date Tue, 19 May 2009 12:11:04 GMT
https://issues.apache.org/bugzilla/show_bug.cgi?id=47055





--- Comment #13 from Mike <mike.pechkin@gmail.com>  2009-05-19 05:11:00 PST ---
fix for wrong sid_ctx doesn't help.
the core of the issue is here:

if ((dc->nOptions & SSL_OPT_OPTRENEGOTIATE) &&
    (verify_old == SSL_VERIFY_NONE) &&
    ((peercert = SSL_get_peer_certificate(ssl)) != NULL))
   {
        renegotiate_quick = TRUE;
        X509_free(peercert);
   }

SSL_get_peer_certificate() returns NULL and renegotiate_quick doesn't set TRUE
and apache doesn't do *quick* renegotiation and client auth.


keep having fun...

-- 
Configure bugmail: https://issues.apache.org/bugzilla/userprefs.cgi?tab=email
------- You are receiving this mail because: -------
You are the assignee for the bug.

---------------------------------------------------------------------
To unsubscribe, e-mail: bugs-unsubscribe@httpd.apache.org
For additional commands, e-mail: bugs-help@httpd.apache.org


Mime
View raw message