httpd-bugs mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
Subject DO NOT REPLY [Bug 46880] SSL+Client Certificates required+large POSTs cause ssl reneg to fail (sometimes)
Date Fri, 20 Mar 2009 13:23:41 GMT

Joe Orton <> changed:

           What    |Removed                     |Added
             Status|NEW                         |NEEDINFO

--- Comment #1 from Joe Orton <>  2009-03-20 06:23:38 PST ---
1) 800meg is um, seriously large.  I can't recommend enough that you rejig the
webapp to ensure that the first request to the client-cert-required area is a
GET rather than a POST-with-large-body.

2) if you're using the patched 2.2.3 RHEL packages please file bugs in RH
bugzilla in the first instance.  The debug message "filling buffer" should
include a suffix ", max size N bytes" if you are using the SSLRenegBufferSize
patch, which is confusing.

what this:

[Thu Mar 19 21:35:58 2009] [debug] ssl_engine_io.c(1529): [client] total of 4324 bytes in buffer, eos=1

means is that mod_ssl read an end-of-file (eos=1) from the client after reading
~4K of data.  What client is being used?  It may be necessary to look at packet
traces to determine what is going on here.

Configure bugmail:
------- You are receiving this mail because: -------
You are the assignee for the bug.

To unsubscribe, e-mail:
For additional commands, e-mail:

View raw message