https://issues.apache.org/bugzilla/show_bug.cgi?id=54357
--- Comment #9 from Alex Bligh <[email protected]> --- Created attachment 32010 --> https://issues.apache.org/bugzilla/attachment.cgi?id=32010&action=edit Proof of concept patch to address the issue Attached is a proof of concept patch to address the issue. This moves the storage of the stapling information to the modssl_pk_server_t structure, and out of X509 ex_data, which is the source of the issue. It thus has a server lifetime. Please note this is COMPILE TESTED ONLY. IE I have not checked whether it actually works at all. Also note that I am almost entirely unfamiliar with OCSP. I have assumed that one set of stapling information per certificate is required, not per certificate algorithm (i.e. we do not need an array). Feedback appreciated. -- You are receiving this mail because: You are the assignee for the bug. --------------------------------------------------------------------- To unsubscribe, e-mail: [email protected] For additional commands, e-mail: [email protected]
