httpd-bugs mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From bugzi...@apache.org
Subject [Bug 54030] New: Support subjectAltName when (reverse-)proxying
Date Fri, 19 Oct 2012 21:40:42 GMT
https://issues.apache.org/bugzilla/show_bug.cgi?id=54030

          Priority: P2
            Bug ID: 54030
          Assignee: bugs@httpd.apache.org
           Summary: Support subjectAltName when (reverse-)proxying
          Severity: normal
    Classification: Unclassified
                OS: All
          Reporter: michael@weiser.dinsnail.net
          Hardware: All
            Status: NEW
           Version: 2.4.3
         Component: mod_ssl
           Product: Apache httpd-2

A reverse proxy with SSLProxyCheckPeerCN turned on does not support
certificates with subjectAltName:DNS extensions as of 2.4.3 and latest trunk.
The attached patches seem to make that work for 2.4.2 and trunk. trunk already
has some limited wildcard matching which is superseded by this patch. There is
some mild code duplication since the logic is stolen from
modules/ssl/ssl_engine_init.c:ssl_check_public_cert().

-- 
You are receiving this mail because:
You are the assignee for the bug.

---------------------------------------------------------------------
To unsubscribe, e-mail: bugs-unsubscribe@httpd.apache.org
For additional commands, e-mail: bugs-help@httpd.apache.org


Mime
View raw message