You are viewing a plain text version of this content. The canonical link for it is here.
Posted to dev@trafficserver.apache.org by David Carlin <dc...@yahoo-inc.com> on 2013/02/16 02:42:43 UTC
ATS 3.2.4 and TS-1363 - SSL chain cert not being sent
I downloaded ATS 3.2.4 and noticed the release notes failed to mention
TS-1363 being fixed. This is a bug where the SSL chain cert isn't sent.
I've previous applied the patch attached to TS-1363 to fix this in 3.2.0.
I applied the patch to the 3.2.4 release and the chain cert was sent
twice! I then removed the patch and the certificate chain worked normally.
Was TS-1363 applied and just not mentioned in the release notes? Seems
unlikely as the patch applied properly. Did something else fix the SSL
chain cert problem and the TS-1363 patch isn't necessary anymore?
David
On 1/16/13 12:55 PM, "Igor Galić" <ig...@apache.org> wrote:
>
>Hey folks,
>
>I've rolled a tar-ball of 3.2.x and I would like
>to kick of a voting to get it released!
>
>You can find it on
>
> http://people.apache.org/~igalic/releases/
>
>-rw-r--r-- 1 igalic igalic 2524828 Jan 16 18:16
>trafficserver-3.2.4.tar.bz2
>-rw-r--r-- 1 igalic igalic 836 Jan 16 18:16
>trafficserver-3.2.4.tar.bz2.asc
>-rw-r--r-- 1 igalic igalic 62 Jan 16 18:16
>trafficserver-3.2.4.tar.bz2.md5
>-rw-r--r-- 1 igalic igalic 70 Jan 16 18:16
>trafficserver-3.2.4.tar.bz2.sha1
>
>41d67f9b64e284984ea8cdc9518f3d4e *trafficserver-3.2.4.tar.bz2
>ad491200f074b242d664243fe87146b42b806ce1 *trafficserver-3.2.4.tar.bz2
>
>
>Voting ends on: Sat Jan 19 20:12:00 UTC 2013
>
>So long,
>
>-- i
>
Re: ATS 3.2.4 and TS-1363 - SSL chain cert not being sent
Posted by James Peach <jp...@apache.org>.
On 15/02/2013, at 5:42 PM, David Carlin <dc...@yahoo-inc.com> wrote:
> I downloaded ATS 3.2.4 and noticed the release notes failed to mention
> TS-1363 being fixed. This is a bug where the SSL chain cert isn't sent.
> I've previous applied the patch attached to TS-1363 to fix this in 3.2.0.
>
> I applied the patch to the 3.2.4 release and the chain cert was sent
> twice! I then removed the patch and the certificate chain worked normally.
It looks like TS-1363 was cloned to TS-1374 and backported to 3.2.x. I'm not sure why the release notes process missed it, but I'm glad to heat that it is fixed (intentionally!).
J
> Was TS-1363 applied and just not mentioned in the release notes? Seems
> unlikely as the patch applied properly. Did something else fix the SSL
> chain cert problem and the TS-1363 patch isn't necessary anymore?
>
> David
>
> On 1/16/13 12:55 PM, "Igor Galić" <ig...@apache.org> wrote:
>
>>
>> Hey folks,
>>
>> I've rolled a tar-ball of 3.2.x and I would like
>> to kick of a voting to get it released!
>>
>> You can find it on
>>
>> http://people.apache.org/~igalic/releases/
>>
>> -rw-r--r-- 1 igalic igalic 2524828 Jan 16 18:16
>> trafficserver-3.2.4.tar.bz2
>> -rw-r--r-- 1 igalic igalic 836 Jan 16 18:16
>> trafficserver-3.2.4.tar.bz2.asc
>> -rw-r--r-- 1 igalic igalic 62 Jan 16 18:16
>> trafficserver-3.2.4.tar.bz2.md5
>> -rw-r--r-- 1 igalic igalic 70 Jan 16 18:16
>> trafficserver-3.2.4.tar.bz2.sha1
>>
>> 41d67f9b64e284984ea8cdc9518f3d4e *trafficserver-3.2.4.tar.bz2
>> ad491200f074b242d664243fe87146b42b806ce1 *trafficserver-3.2.4.tar.bz2
>>
>>
>> Voting ends on: Sat Jan 19 20:12:00 UTC 2013
>>
>> So long,
>>
>> -- i
>>
>