We read every piece of feedback, and take your input very seriously.
To see all available qualifiers, see our documentation.
1 parent a8777b2 commit 2d0e4efCopy full SHA for 2d0e4ef
CHANGES
@@ -1,6 +1,9 @@
1
-*- coding: utf-8 -*-
2
Changes with Apache 2.5.0
3
4
+ *) mod_ssl: reset client-verify state of ssl when aborting renegotiations.
5
+ [Erki Aring <erki@example.ee>, Stefan Eissing]
6
+
7
*) mod_proxy_{http,ajp,fcgi}: don't reuse backend connections with data
8
available before the request is sent. PR 57832. [Yann Ylavic]
9
modules/ssl/ssl_engine_kernel.c
@@ -727,6 +727,7 @@ int ssl_hook_Access(request_rec *r)
727
* on this connection.
728
*/
729
apr_table_setn(r->notes, "ssl-renegotiate-forbidden", "verify-client");
730
+ SSL_set_verify(ssl, verify_old, ssl_callback_SSLVerify);
731
return HTTP_FORBIDDEN;
732
}
733
/* optimization */
0 commit comments