These changesets represents the changes on the squid3/ssl-bump development branch of Squid. If there is any questions please contact squid-dev@squid-cache.org.
| Date | Author | Size | Description |
|---|
| 2008/02/10 19:41:52 | rousskov | +78 -12 | Added ssl_bump ACL. The ACL controls which CONNECT requests to an http_port |
| 2008/02/10 19:23:16 | rousskov | +2 -2 | Polished comments. Added TODO. |
| 2008/02/09 00:35:10 | rousskov | +4 -8 | Fixed http_port address printing after merging IPv6 changes from HEAD. |
| 2008/01/27 18:08:31 | rousskov | +7146 -15785 | Trying to undo "cvsmerge init ...; cvsmerge ssl-bump" effects. Those commands |
| 2008/01/27 18:08:31 | rousskov | +7146 -15785 | Trying to undo "cvsmerge init ...; cvsmerge ssl-bump" effects. Those commands |
| 2007/12/06 18:02:41 | rousskov | +2 -8 | Fixed more compile errors after removal of snprintf.h |
| 2007/12/04 15:34:35 | rousskov | +8 -1 | The connect(2) system call might return "connection ready" status even for a |
| 2007/11/08 21:55:53 | rousskov | +6 -5 | Do not call aclChecklistCreate if the user did not configure |
| 2007/11/08 15:30:56 | rousskov | +13 -10 | Ignore https_port where we failed to create an SSL context. We used to warn |
| 2007/11/06 18:17:24 | rousskov | +15 -11 | Removed DEFAULT_IF_NONE from sslproxy_cert_error because it creates an ACL |
| 2007/11/06 18:04:24 | rousskov | +6 -4 | Added ERR_SECURE_CONNECT_FAIL that is returned when we cannot secure |
| 2007/11/06 17:53:34 | rousskov | +962 -0 | Added ERR_SECURE_CONNECT_FAIL that is returned when we cannot secure |
| 2007/11/06 16:22:34 | rousskov | +42 -42 | Removed indentation tabs. |
| 2007/11/06 16:14:59 | rousskov | +4 -121 | Removed default/copied headers. |
| 2007/11/06 16:02:33 | rousskov | +40 -29 | Guarded sslBump code with USE_SSL. |
| 2007/11/06 16:01:04 | rousskov | +14 -1 | Documented the sslBump option of the http_port directive. |
| 2007/11/06 00:23:13 | rousskov | +3 -2 | Intercept CONNECT requests only if sslBump option is set for the http_port. |
| 2007/11/06 00:21:31 | rousskov | +32 -11 | Mark connection that switched to SSL so that others can treat associated |
| 2007/11/06 00:14:51 | rousskov | +22 -1 | Parse/dump the newly added sslBump http_port option. The option does not imply |
| 2007/11/06 00:09:28 | rousskov | +4 -1 | Added sslBump option to mark ports that intercept CONNECT requests. |
| 2007/11/05 22:13:39 | rousskov | +287 -186 | SslBump needs access to SSL-related options when responding to CONNECT |
| 2007/11/05 17:53:55 | rousskov | +96 -4 | Set SSL error to SQUID_X509_V_ERR_DOMAIN_MISMATCH when Squid certificate domain |
| 2007/11/05 17:53:00 | rousskov | +10 -2 | Supply the SSL error check ACL when forwarding SSL connections. The check list |
| 2007/11/05 17:52:37 | rousskov | +51 -2 | Switch to SslBump mode when a CONNECT request is detected. Will need to add an |
| 2007/11/05 17:52:08 | rousskov | +65 -18 | Added ConnStateData::switchToHttps() method that attempts to switch regular |
| 2007/11/05 17:51:27 | rousskov | +4 -2 | Use newly added ACLChecklist::fd() method to get to the file descriptor, |
| 2007/11/05 17:50:54 | rousskov | +30 -2 | Store connection file descriptor, to be used to get to the connection SSL |
| 2007/11/05 17:50:12 | rousskov | +5 -1 | Added support for ssl_error ACL (ACLSslError*). |
| 2007/11/05 17:49:45 | rousskov | +275 -2 | Added sslproxy_cert_error ACL to be able to bypass some certificate validation |
| 2007/11/05 17:12:49 | rousskov | +3 -0 | Added Palisade Systems. |