-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA256 All,
I'm guessing this is mostly directed towards Rainer: can someone look at https://bz.apache.org/bugzilla/show_bug.cgi?id=53940? It's got a proposed patch and IMO makes sense to implement. I'm not familiar enough with OpenSSL and the way that the SSL engine works to know if this is a valid technique. Most people don't use CRLs so it won't affect their performance or anything like that. But those who do rely on a CRL can't afford to bounce their Tomcat instance or connector just to pick-up an updated CRL . - -chris -----BEGIN PGP SIGNATURE----- Comment: GPGTools - http://gpgtools.org Comment: Using GnuPG with Thunderbird - http://www.enigmail.net/ iQJRBAEBCAA7FiEEMmKgYcQvxMe7tcJcHPApP6U8pFgFAlqvwIQdHGNocmlzQGNo cmlzdG9waGVyc2NodWx0ei5uZXQACgkQHPApP6U8pFiCuxAAxuBMKICpWJjbm274 B7sLkUQVX28xCKaoOPhjWOJGuYqNHV4lwq7BXcyzG5hxm2ehb+hx4jJaP+t2a01g XrxNfLcD39g4rqThpi2U1YYY2+3k6VoBvfbATWHvIOmgFBtEqDGTapRwhYZie8Fq +/xuB39h0XB10v1lmXtoREV6sSVzY3FvOqz4LcVh2TFQN6uBmI4TRKjyUgm0BeQQ iq0OA7Hgsvp6Xgf6P11wVD6vq9opRnAbt6KiDg3WOKJPgthylwToIab/AJkkO/77 6cK2LF/otpKNxSfVRoqnzjV3X2DX1hNy2mK1JSp3lwFALUplsmC3R7s/THSPFda1 ttLUy7IiUd0+EWwmHwQzW1oRE4lOSB2z99Yuv4HSrhxW43+AjCVqIdUebDF4OI2G Bf8zAYwNm8Eh6mgBaQ5l0EPRkN1CEVkbWwVg2M8BjbidBEVdKH4LcKT4riSGTNO8 tqWO8Zr1hQ50dpZ8Ulcilj7s14vznqJEVs/adOb/Br6vxf2RyVyHyMYaXVV3ifuy +cp+Ef8Y/KGqyPjsJsgAsszL2W3d0qyw7+O57duGgVDLpHHX+qTLsqo5hmL5xD7D mRQSOxcB66wYbO+HR5+T4NrLnymsZX3SngHbhkadAEsBtN8UHZGwi1c7n9mhRmAR /LPTqnWd/z7wBkpr1583goBTmpw= =bSIb -----END PGP SIGNATURE----- --------------------------------------------------------------------- To unsubscribe, e-mail: dev-unsubscr...@tomcat.apache.org For additional commands, e-mail: dev-h...@tomcat.apache.org
