You are viewing a plain text version of this content. The canonical link for it is here.
Posted to cvs@httpd.apache.org by sf...@apache.org on 2012/07/30 22:42:10 UTC
svn commit: r1367286 - /httpd/httpd/branches/2.2.x/STATUS
Author: sf
Date: Mon Jul 30 20:42:09 2012
New Revision: 1367286
URL: http://svn.apache.org/viewvc?rev=1367286&view=rev
Log:
That patch needs some work
Modified:
httpd/httpd/branches/2.2.x/STATUS
Modified: httpd/httpd/branches/2.2.x/STATUS
URL: http://svn.apache.org/viewvc/httpd/httpd/branches/2.2.x/STATUS?rev=1367286&r1=1367285&r2=1367286&view=diff
==============================================================================
--- httpd/httpd/branches/2.2.x/STATUS (original)
+++ httpd/httpd/branches/2.2.x/STATUS Mon Jul 30 20:42:09 2012
@@ -186,6 +186,13 @@ PATCHES PROPOSED TO BACKPORT FROM TRUNK:
preferrably, and it would be good if mod_ssl.xml also includes
the change to the section about the SSLProtocol directive
(see r1222921).
+ -1: sf:
+ - ssl_engine_init.c: misses two "ctx = SSL_CTX_new(method);" calls
+ (or move the existing ones after the if blocks).
+ - The handling of "SSLProtocol all -SSLv2" is broken,
+ resulting in a "No SSL protocols available" error.
+ This is due to the "thisopt = SSL_PROTOCOL_SSLV2" line being
+ removed in the OPENSSL_NO_TLSEXT case.
* mod_ssl: Add RFC 5878 support. This allows support of mechanisms
such as Certificate Transparency. Note that new