> The timeframe is when I (or MARA Systems) have a customer
> requiring the functionality, or someone else submits a patch
> implementing the function.
> I have not yet studied how complex it would be to add the
> renegotiation requirements to request SSL certificates in the
> ACL code but it probably isn't all trivial. SSL certificate
> negotiation is quite different from all other forms of
> authentication or acl checks.

OK, makes sense. Just wonder why there is certificate related ACLs in
squid.conf already.
I think its a bit confusing.