[Issues] [mod_gnutls 0000103]: mod_tls needs finesse to pass server-side CA certificate chains
Mantis Bug Tracker
issues at outoforder.cc
Mon Jul 5 03:28:26 EDT 2010
The following issue has been CLOSED
======================================================================
http://issues.outoforder.cc/view.php?id=103
======================================================================
Reported By: dajhorn
Assigned To: nmav
======================================================================
Project: mod_gnutls
Issue ID: 103
Category: Feature Request
Reproducibility: always
Severity: feature
Priority: normal
Status: closed
Apache Version: 2.2.8
Resolution: no change required
Fixed in Version:
======================================================================
Date Submitted: 2009-06-16 13:22 EDT
Last Modified: 2010-07-05 03:28 EDT
======================================================================
Summary: mod_tls needs finesse to pass server-side CA
certificate chains
Description:
The regular mod_ssl has an SSLCertificateChainFile directive that will
automatically load and send the CRT files that are typically issued by
second-tier certificate authorities.
Feature request: Implement a GnuTLSCertificateChainFile directive so that
users don't need to manually convert CRT files.
======================================================================
----------------------------------------------------------------------
(0000153) jmdesp (reporter) - 2009-06-30 14:01
http://issues.outoforder.cc/view.php?id=103#c153
----------------------------------------------------------------------
In the additional information, you talk about including crl in the file,
but that's clearly intermediate CA certificates, and not crl.
The more given that you describe how to use "openssl x509" (and not
"openssl crl") to convert their format.
----------------------------------------------------------------------
(0000210) nmav (manager) - 2010-07-05 03:22
http://issues.outoforder.cc/view.php?id=103#c210
----------------------------------------------------------------------
mod_gnutls always supported loading a chain file using the
GnuTLSCertificateFile directive.
Issue History
Date Modified Username Field Change
======================================================================
2009-06-16 13:22 dajhorn New Issue
2009-06-16 13:22 dajhorn Apache Version => 2.2.8
2009-06-30 14:01 jmdesp Note Added: 0000153
2009-06-30 14:14 nmav Issue Monitored: nmav
2010-07-05 03:22 nmav Note Added: 0000210
2010-07-05 03:22 nmav Status new => resolved
2010-07-05 03:22 nmav Resolution open => no change
required
2010-07-05 03:22 nmav Assigned To => nmav
2010-07-05 03:28 nmav Status resolved => closed
======================================================================
More information about the Issues
mailing list