On Tue, 27 Apr 2004, David Hajek wrote:

> Hello Henrik,
>
> sorry to not respond for such a long time - was busy with some other stuff.
> I make a simple patch which
> sets SSL_CTX_set_session_id_context(). Now client auth works with both
> Mozilla and Explorer. Let me
> know what do you think.


I added a similar thing (but configuraiton driven) to the Squid-2.5 ssl
patch not long ago, and it will get ported to Squid-3.0 in some time along
with a large number of SSL related bug fixes.

However, I have not yet found any browser requiring this, nor have I found
any difference in the SSL handshakes.. the Context ID field seems to be
blank both with and without this call. (using OpenSSL 0.9.7a with RedHat
patches).

The patch as such looks valid, except that it was reversed (deleting the
lines you have added)..

Exactly which browser is it you need this for?


Regards
Henrik