You are viewing a plain text version of this content. The canonical link for it is here.

Posted to bugs@httpd.apache.org by bu...@apache.org on 2003/07/07 15:28:16 UTC

DO NOT REPLY [Bug 21371] New: - apache not passing certificate chain to servlet or CGI

DO NOT REPLY TO THIS EMAIL, BUT PLEASE POST YOUR BUG 
RELATED COMMENTS THROUGH THE WEB INTERFACE AVAILABLE AT
<http://nagoya.apache.org/bugzilla/show_bug.cgi?id=21371>.
ANY REPLY MADE TO THIS MESSAGE WILL NOT BE COLLECTED AND 
INSERTED IN THE BUG DATABASE.

http://nagoya.apache.org/bugzilla/show_bug.cgi?id=21371

apache not passing certificate chain to servlet or CGI

           Summary: apache not passing certificate chain to servlet or CGI
           Product: Apache httpd-2.0
           Version: 2.0.46
          Platform: Other
        OS/Version: Linux
            Status: NEW
          Severity: Major
          Priority: Other
         Component: mod_ssl
        AssignedTo: bugs@httpd.apache.org
        ReportedBy: mark@dolphtech.com


I have been working on a site that enforces mutually authenticated SSL
using apache 2.0.46. I have compiled it from source using the following
commands passed to the ./configure script:

./configure --enable-so --enable-ssl --with-ssl=/usr/local/ssl

/usr/local/ssl contains openssl version 0.9.7b which I compiled from
source using the default build configuration.
I have tried both servlets and cgi and all I can get is the user
certificate, not the certificate chain.  I have tried looking at the
mod_ssl code, and cannot figure out why the +ExportCertData directive
will only tell apache to forward on the user certificate, not the chain.

---------------------------------------------------------------------
To unsubscribe, e-mail: bugs-unsubscribe@httpd.apache.org
For additional commands, e-mail: bugs-help@httpd.apache.org