mirror of
https://github.com/apache/httpd.git
synced 2025-08-15 23:27:39 +00:00
Treat non-leaf certificates present in SSLProxyMachineCertificateFile
the same was as non-leaf certs are in SSLCertificateFile - use them to build the trusted cert chain for the end-entity (client) cert. * modules/ssl/ssl_engine_init.c (ssl_init_proxy_certs): For any non-leaf certificate present in the configured, trust as if used in SSLProxyMachineCertificateChainFile. Github: closes #151 git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/trunk@1884552 13f79535-47bb-0310-9956-ffa450edef68
This commit is contained in:
Joe Orton
4
changes-entries/ssl-proxy-chain-certs.txt
Normal file
4
changes-entries/ssl-proxy-chain-certs.txt
Normal file
@ -0,0 +1,4 @@
|
||||
*) mod_ssl: SSLProxyMachineCertificateFile/Path may reference files
|
||||
which include CA certificates; those CA certs are treated as if
|
||||
configured with SSLProxyMachineCertificateChainFile. [Joe Orton]
|
||||
|
||||
Reference in New Issue
Block a user