You are viewing a plain text version of this content. The canonical link for it is here.
Posted to bugs@httpd.apache.org by bu...@apache.org on 2009/03/20 14:23:41 UTC
DO NOT REPLY [Bug 46880] SSL+Client Certificates required+large
POSTs cause ssl reneg to fail (sometimes)
https://issues.apache.org/bugzilla/show_bug.cgi?id=46880
Joe Orton <jo...@redhat.com> changed:
What |Removed |Added
----------------------------------------------------------------------------
Status|NEW |NEEDINFO
--- Comment #1 from Joe Orton <jo...@redhat.com> 2009-03-20 06:23:38 PST ---
1) 800meg is um, seriously large. I can't recommend enough that you rejig the
webapp to ensure that the first request to the client-cert-required area is a
GET rather than a POST-with-large-body.
2) if you're using the patched 2.2.3 RHEL packages please file bugs in RH
bugzilla in the first instance. The debug message "filling buffer" should
include a suffix ", max size N bytes" if you are using the SSLRenegBufferSize
patch, which is confusing.
what this:
[Thu Mar 19 21:35:58 2009] [debug] ssl_engine_io.c(1529): [client
155.34.228.80] total of 4324 bytes in buffer, eos=1
means is that mod_ssl read an end-of-file (eos=1) from the client after reading
~4K of data. What client is being used? It may be necessary to look at packet
traces to determine what is going on here.
--
Configure bugmail: https://issues.apache.org/bugzilla/userprefs.cgi?tab=email
------- You are receiving this mail because: -------
You are the assignee for the bug.
---------------------------------------------------------------------
To unsubscribe, e-mail: bugs-unsubscribe@httpd.apache.org
For additional commands, e-mail: bugs-help@httpd.apache.org