Login | Register For Free | Help
Search for: (Advanced)

Mailing List Archive: Apache: Bugs
[Bug 53156] New: CRL validation fails if CRL is missing
 

Index | Next | Previous | View Flat


bugzilla at apache

Apr 27, 2012, 6:53 AM


Views: 99
Permalink
[Bug 53156] New: CRL validation fails if CRL is missing

https://issues.apache.org/bugzilla/show_bug.cgi?id=53156

Priority: P2
Bug ID: 53156
Assignee: bugs [at] httpd
Summary: CRL validation fails if CRL is missing
Severity: enhancement
Classification: Unclassified
OS: All
Reporter: me [at] davidsansome
Hardware: All
Status: NEW
Version: 2.5-HEAD
Component: mod_ssl
Product: Apache httpd-2

Created attachment 28688
--> https://issues.apache.org/bugzilla/attachment.cgi?id=28688&action=edit
Add a SSLCARevocationAllowMissing option

In Apache 2.3.15 the CRL validation behaviour was changed to fail with an
"unable to get certificate CRL" error if a client tried to connect with a
certificate that was signed by a CA that did not have a CRL configured.

I've attached a patch that adds a SSLCARevocationAllowMissing option to restore
the old behaviour.

--
You are receiving this mail because:
You are the assignee for the bug.

Subject User Time
[Bug 53156] New: CRL validation fails if CRL is missing bugzilla at apache Apr 27, 2012, 6:53 AM

  Index | Next | Previous | View Flat
 
 


Interested in having your list archived? Contact Gossamer Threads
 
  Web Applications & Managed Hosting Powered by Gossamer Threads Inc.