Re: squid 3.3 status updates

From: Alex Rousskov <rousskov_at_measurement-factory.com>
Date: Mon, 23 Jul 2012 11:32:02 -0600

On 07/22/2012 02:11 AM, Amos Jeffries wrote:

> Can one of you guys please update the Features/BumpSslServerFirst and
> Features/MimicSslServerCert documentation in the wiki to reflect the
> current state of the projects and what fixes got applied during the
> audit process.

I updated the current state of those two projects, but did not see any
text related to fixes applied during the audit process. I do not recall
any user-visible fixes other that squid.conf text changes, actually. We
did implement support for old style deny/allow keywords with ssl_bump
but ssl_bump is not mentioned on those two wiki pages.

Christos, please double check that I did not miss anything. For example,
if we now close the client connection if the server closes the
connection, there is one TODO in "Connection pinning" section of
BumpSslServerFirst that needs to be removed/integrated.

> In a quick scan of the pages I noticed a few things (ie IPv6 address
> wrapping) which AFAIK were resolved before they got merged.

I removed a few completed TODOs, but I did not see any related to IPv6
handling. Which IPv6-related text do you think should be updated?

> I have updated the roadmap to link these pages as new 3.3 features.

Thank you,

Alex.
Received on Mon Jul 23 2012 - 17:32:26 MDT

This archive was generated by hypermail 2.2.0 : Mon Jul 23 2012 - 12:00:04 MDT