DO NOT REPLY TO THIS EMAIL, BUT PLEASE POST YOUR BUGĀ· RELATED COMMENTS THROUGH THE WEB INTERFACE AVAILABLE AT <http://issues.apache.org/bugzilla/show_bug.cgi?id=41123>. ANY REPLY MADE TO THIS MESSAGE WILL NOT BE COLLECTED ANDĀ· INSERTED IN THE BUG DATABASE.
http://issues.apache.org/bugzilla/show_bug.cgi?id=41123 ------- Additional Comments From [EMAIL PROTECTED] 2007-09-13 07:42 ------- In ssl_ocsp.c, function ap_ocsp_verify_ocsp: ----- start ----- if (rc == SSL_OCSP_OK) { /* Get issuer */ ap_log_error(APLOG_MARK, APLOG_DEBUG, 0, s, "Get Issuer"); rc = X509_STORE_CTX_get1_issuer(&issuer, ctx, cert); if (rc != 1) { ap_log_error(APLOG_MARK, APLOG_ERR, 0, s, "Cannot get issuer of '%s'. rc=%d", X509_SUBJ_NAME(cert), rc); rc = SSL_OCSP_ERROR_INTERNAL; } } if (rc == SSL_OCSP_OK) { ----- end ----- This can't work. If there's no issuer rc is set to SSL_OCSP_ERROR_INTERNAL. If there is one, rc stays "1". However, SSL_OCSP_OK is 0, 1 means SSL_OCSP_ERROR_PARSE_URL -- Configure bugmail: http://issues.apache.org/bugzilla/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- You are the assignee for the bug, or are watching the assignee. --------------------------------------------------------------------- To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
