https://issues.apache.org/bugzilla/show_bug.cgi?id=54030
Priority: P2
Bug ID: 54030
Assignee: [email protected]
Summary: Support subjectAltName when (reverse-)proxying
Severity: normal
Classification: Unclassified
OS: All
Reporter: [email protected]
Hardware: All
Status: NEW
Version: 2.4.3
Component: mod_ssl
Product: Apache httpd-2
A reverse proxy with SSLProxyCheckPeerCN turned on does not support
certificates with subjectAltName:DNS extensions as of 2.4.3 and latest trunk.
The attached patches seem to make that work for 2.4.2 and trunk. trunk already
has some limited wildcard matching which is superseded by this patch. There is
some mild code duplication since the logic is stolen from
modules/ssl/ssl_engine_init.c:ssl_check_public_cert().
--
You are receiving this mail because:
You are the assignee for the bug.
---------------------------------------------------------------------
To unsubscribe, e-mail: [email protected]
For additional commands, e-mail: [email protected]
