Hi,
while looking around for the impact of the auth-no-keytab patch, I stumbled
upon a missing copy of peer_domain in src/tunnel.cc and I can confirm that the
Host: line is not forced if I query a document through a https URL whereas it
is forced if I query the same document through a http URL.
Could you please review the implications of this patch and commit it? I'm not
using the feature.
Might it explain the problem described at
http://stackoverflow.com/questions/26548298/squid3-reverse-ssl-proxy-squid-x509-v-err-domain-mismatch-error
?
Best regards,
Aymeric
=== modified file 'src/tunnel.cc'
--- src/tunnel.cc 2015-11-07 12:08:33 +0000
+++ src/tunnel.cc 2015-11-09 11:57:34 +0000
@@ -992,9 +992,11 @@
debugs(26, 4, HERE << "determine post-connect handling pathway.");
if (conn->getPeer()) {
tunnelState->request->peer_login = conn->getPeer()->login;
+ tunnelState->request->peer_domain = conn->getPeer()->domain;
tunnelState->request->flags.proxying = !(conn->getPeer()->options.originserver);
} else {
tunnelState->request->peer_login = NULL;
+ tunnelState->request->peer_domain = NULL;
tunnelState->request->flags.proxying = false;
}
_______________________________________________
squid-dev mailing list
[email protected]
http://lists.squid-cache.org/listinfo/squid-dev
