bugzilla at apache
Apr 27, 2012, 6:53 AM
[Bug 53156] New: CRL validation fails if CRL is missing
Bug ID: 53156
Assignee: bugs [at] httpd
Summary: CRL validation fails if CRL is missing
Reporter: me [at] davidsansome
Product: Apache httpd-2
Created attachment 28688
Add a SSLCARevocationAllowMissing option
In Apache 2.3.15 the CRL validation behaviour was changed to fail with an
"unable to get certificate CRL" error if a client tried to connect with a
certificate that was signed by a CA that did not have a CRL configured.
I've attached a patch that adds a SSLCARevocationAllowMissing option to restore
the old behaviour.
You are receiving this mail because:
You are the assignee for the bug.