Return-Path: X-Original-To: apmail-httpd-dev-archive@www.apache.org Delivered-To: apmail-httpd-dev-archive@www.apache.org Received: from mail.apache.org (hermes.apache.org [140.211.11.3]) by minotaur.apache.org (Postfix) with SMTP id 55AA866A1 for ; Thu, 4 Aug 2011 08:08:55 +0000 (UTC) Received: (qmail 48453 invoked by uid 500); 4 Aug 2011 08:08:54 -0000 Delivered-To: apmail-httpd-dev-archive@httpd.apache.org Received: (qmail 47497 invoked by uid 500); 4 Aug 2011 08:08:36 -0000 Mailing-List: contact dev-help@httpd.apache.org; run by ezmlm Precedence: bulk Reply-To: dev@httpd.apache.org list-help: list-unsubscribe: List-Post: List-Id: Delivered-To: mailing list dev@httpd.apache.org Received: (qmail 47476 invoked by uid 99); 4 Aug 2011 08:08:28 -0000 Received: from nike.apache.org (HELO nike.apache.org) (192.87.106.230) by apache.org (qpsmtpd/0.29) with ESMTP; Thu, 04 Aug 2011 08:08:28 +0000 X-ASF-Spam-Status: No, hits=-5.0 required=5.0 tests=FAKE_REPLY_C,RCVD_IN_DNSWL_HI,SPF_HELO_PASS,SPF_PASS X-Spam-Check-By: apache.org Received-SPF: pass (nike.apache.org: domain of jorton@redhat.com designates 209.132.183.28 as permitted sender) Received: from [209.132.183.28] (HELO mx1.redhat.com) (209.132.183.28) by apache.org (qpsmtpd/0.29) with ESMTP; Thu, 04 Aug 2011 08:08:19 +0000 Received: from int-mx10.intmail.prod.int.phx2.redhat.com (int-mx10.intmail.prod.int.phx2.redhat.com [10.5.11.23]) by mx1.redhat.com (8.14.4/8.14.4) with ESMTP id p7487vxX018212 (version=TLSv1/SSLv3 cipher=DHE-RSA-AES256-SHA bits=256 verify=OK) for ; Thu, 4 Aug 2011 04:07:57 -0400 Received: from turnip.manyfish.co.uk (ovpn-112-17.ams2.redhat.com [10.36.112.17]) by int-mx10.intmail.prod.int.phx2.redhat.com (8.14.4/8.14.4) with ESMTP id p7487uE6008606 (version=TLSv1/SSLv3 cipher=DHE-RSA-AES256-SHA bits=256 verify=NO) for ; Thu, 4 Aug 2011 04:07:57 -0400 Received: from jorton by turnip.manyfish.co.uk with local (Exim 4.72) (envelope-from ) id 1QosyB-0002I3-3W for dev@httpd.apache.org; Thu, 04 Aug 2011 09:07:55 +0100 Date: Thu, 4 Aug 2011 09:07:55 +0100 From: Joe Orton To: dev@httpd.apache.org Subject: Re: mod_ssl in trunk with OpenSSL 0.9.7 as a minimum requirement? Message-ID: <20110804080754.GA8331@redhat.com> Mail-Followup-To: dev@httpd.apache.org MIME-Version: 1.0 Content-Type: text/plain; charset=utf-8 Content-Disposition: inline KIn-Reply-To: <4E3975F6.6060309@velox.ch> User-Agent: Mutt/1.5.20 (2009-12-10) Organization: Registered in England and Wales under Company Registration No. 03798903 Directors: Michael Cunningham (USA), Mark Hegarty (Ireland), Matt Parson (USA), Charlie Peters (USA) X-Scanned-By: MIMEDefang 2.68 on 10.5.11.23 X-Virus-Checked: Checked by ClamAV on apache.org Hi Kaspar, On Wed, Aug 03, 2011 at 06:23:18PM +0200, Kaspar Brand wrote: > Ok, so the initial version of that patch became relatively large: > > https://people.apache.org/~kbrand/mod_ssl-toolkit-support.v1.diff Thanks so much for taking this on! > Even though trunk is CTR, I'm somewhat reluctant with simply going ahead > and would appreciate if people could comment on this approach (e.g. if > it's fine or splitting up would be preferred, etc.). I agree with Bill, splitting up would be nice; otherwise looks very good. It will be great to see the back of ssl_toolkit_compat.h :) I fixed the perl foo in ssl_engine_dh.c so that it creates the right code after regeneration, it looks like that was broken. Regards, Joe