[Bug 66647] New: Analyze usefulness and consider deprecation of certificateChainFile in favor of certificateFile

bugzilla Wed, 14 Jun 2023 02:37:26 -0700

https://bz.apache.org/bugzilla/show_bug.cgi?id=66647


            Bug ID: 66647
           Summary: Analyze usefulness and consider deprecation of
                    certificateChainFile in favor of certificateFile
           Product: Tomcat 9
           Version: 9.0.75
          Hardware: All
                OS: All
            Status: NEW
          Severity: enhancement
          Priority: P2
         Component: Connectors
          Assignee: [email protected]
          Reporter: [email protected]
  Target Milestone: -----

This is a spinoff of Bug 66635.

Our OpenSSL code is mostly based on HTTPd's mod_ssl. HTTPd has deprecated
SSLCertificateChainFile
(https://httpd.apache.org/docs/current/mod/mod_ssl.html#sslcertificatechainfile)
long time ago in favor of SSLCertificateFile which can contain the entire chain
already.

Out task is to:
* Analyse our usage (code-wise) for/of both parameters and update to the
behavior of mod_ssl
* Deprecate certificateChainFile then in favor of certificateFile
* Ideally remove in Tomcat 11 then

-- 
You are receiving this mail because:
You are the assignee for the bug.
---------------------------------------------------------------------
To unsubscribe, e-mail: [email protected]
For additional commands, e-mail: [email protected]

[Bug 66647] New: Analyze usefulness and consider deprecation of certificateChainFile in favor of certificateFile

Reply via email to