User Details
- User Since
- Jul 19 2018, 5:53 PM (330 w, 6 d)
Tue, Nov 12
Will look again next couple of days.
Mon, Nov 11
Fri, Nov 8
FTR: https://httpd.apache.org/docs/2.4/mod/mod_ssl.html#sslcarevocationcheck with chain, leaf, none.
Thu, Nov 7
Wed, Nov 6
I see inconsistency in env vars and in output:
I have now played around with the patch and one of our intermediate CAs:
While testing this, do you intend to add a flag to fetch(1) as well? E.g., --crl-verify?
Tue, Nov 5
I think I have found it, the documentation isn't really good in this case for both SSL_CTX_load_verify_locations() and SSL_CTX_set_default_verify_paths(). If a hashed dir is passed it boils down to https://github.com/openssl/openssl/blob/ccaa754b5f66cc50d8ecbac48b38268e2acd715e/crypto/x509/x509_d2.c#L73-L76 where the manpage says:
X509_LOOKUP_add_dir() passes a directory specification from which certificates and CRLs are loaded on demand into the associated X509_STORE. type indicates what type of object is expected. This can only be used with a lookup using the implementation X509_LOOKUP_hash_dir(3).
Mon, Nov 4
Will happily look at this, already have a few questions. Will chime in later this week.
Thu, Oct 31
Change merged.
Didn't notice that the devel port is maintained by @driesm ...
No objections received, maintainer timeout. Will go ahead and merge it.
Oct 21 2024
Oct 17 2024
Oct 12 2024
Oct 10 2024
Oct 9 2024
Oct 7 2024
This looks like a stupid typo, no?
Sep 28 2024
Sep 27 2024
Sep 24 2024
Process comments
Sep 23 2024
Sep 18 2024
Weird, the maintainer picked up PR, but totally ignored this review....closing.
Sep 17 2024
Guys, can we focus on the actual change. I agree with @jrm, that is makes little sense to waste cycles for ./configure. I will provide this change with a separate PR.
There is only one way to make sure that an artifact ist authentic either X.509 or GPG.
Sep 15 2024
Incorporate @diizzy's comments
Sep 14 2024
Will wait for the maintainer timeout.
Sep 11 2024
Sep 9 2024
Aug 20 2024
Aug 15 2024
Aug 3 2024
Issues addressed.
Add mat's comments
Aug 2 2024
Anyone else, any objections?
Jul 30 2024
@diizzy , can you please have another sharp look at this?
Jul 29 2024
Jul 28 2024
@jrm, this happens when pkgconf is not present:
Jul 26 2024
Address diizzy's comment
Jul 25 2024
Remove port option STATIC
Jul 24 2024
Formatting
Jul 22 2024
Jul 15 2024
Jul 4 2024
Please also note the discussion in the PR: https://bugs.freebsd.org/bugzilla/show_bug.cgi?id=280119
Formatting again
Fix formatting
Jul 3 2024
Jun 10 2024
I'll give @ale the two-week timeout for maintainers. We still have time to next quarterly branch.
Jun 7 2024
@mandree The text has been already reduced. Would you like to have it removed completely?
Jun 6 2024
Incorporate Baptiste's proposal