[mod_gnutls-devel] Reverse proxy tests fail with latest Apache

Thomas Klute thomas2.klute at uni-dortmund.de
Mon Apr 9 09:04:25 CEST 2018

Am 04.04.2018 um 12:49 schrieb Sunil Mohan Adapa:
> I am investigating a serious regression on all FreedomBoxes with reverse
> proxying TLS connections.  I found that the following tests fail with
> Apache 2.4.33-1 (Debian):
> FAIL: test-19_TLS_reverse_proxy.bash
> FAIL: test-20_TLS_reverse_proxy_client_auth.bash
> FAIL: test-21_TLS_reverse_proxy_wrong_cert.bash
> FAIL: test-22_TLS_reverse_proxy_crl_revoke.bash
> FAIL: test-23_TLS_reverse_proxy_mismatched_priorities.bash
> Can someone please confirm.

This seems to be a result of Apache changing the API used by mod_proxy
to set up its client connections, in particular introducing the
"ssl_engine_set" function.

Please try the attached patch and let me know if it fixes the issue.
-------------- next part --------------
A non-text attachment was scrubbed...
Name: proxy-fix-2.4.33.diff
Type: text/x-patch
Size: 7895 bytes
Desc: not available
URL: <https://lists.gnupg.org/pipermail/mod_gnutls-devel/attachments/20180409/27fa1af4/attachment.bin>

More information about the mod_gnutls-devel mailing list