https://bz.apache.org/bugzilla/show_bug.cgi?id=65169
Bug ID: 65169 Summary: Add escaped cert env variables Product: Apache httpd-2 Version: 2.4.46 Hardware: All OS: All Status: NEW Severity: enhancement Priority: P2 Component: mod_ssl Assignee: bugs@httpd.apache.org Reporter: micha...@apache.org Target Milestone: --- A recent Tomcat change rejects all headers with a LF in the value. nginx has added a ssl_client_escaped_cert which does simple URI encoding. Add HTTPd equivalents of all variables which contain LFs. Here is the support for Tomcat: https://github.com/apache/tomcat/pull/406 I consider at least these are affected: * SSL_CLIENT_CERT * SSL_CLIENT_CERT_CHAIN_n * SSL_SERVER_CERT -- You are receiving this mail because: You are the assignee for the bug. --------------------------------------------------------------------- To unsubscribe, e-mail: bugs-unsubscr...@httpd.apache.org For additional commands, e-mail: bugs-h...@httpd.apache.org