httpd-bugs mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From bugzi...@apache.org
Subject DO NOT REPLY [Bug 47055] SSLVerifyClient + Directory doesn't use cache sessions
Date Tue, 19 May 2009 09:34:38 GMT
https://issues.apache.org/bugzilla/show_bug.cgi?id=47055





--- Comment #12 from Mike <mike.pechkin@gmail.com>  2009-05-19 02:34:34 PST ---
As you can see len and context corrupted between step 10 and 11:

[Tue May 19 12:30:29 2009] [debug] ssl_engine_kernel.c(620): Performing full
renegotiation: complete handshake protocol
[Tue May 19 12:30:29 2009] [error] ssl_hook_Access-reneg 10: ssl-len: 32,
ssl-str: 529a40abf407766626d15b85c1627a5f \x92\x8f\t\n
[Tue May 19 12:30:29 2009] [error] ssl_hook_Access-reneg 11: ssl-len: 4,
ssl-str: 0\t\x8e\t40abf407766626d15b85c1627a5f \x92\x8f\t\n

Let's see the source:

ap_log_error(APLOG_MARK, APLOG_ERR, 0, r->server,
  "ssl_hook_Access-reneg 10: ssl-len: %u, ssl-str: %s\n" ,
  ssl->sid_ctx_length, ssl->sid_ctx);

SSL_set_session_id_context(ssl, 
  (unsigned char *)&id, sizeof(id));

ap_log_error(APLOG_MARK, APLOG_ERR, 0, r->server,
  "ssl_hook_Access-reneg 11: ssl-len: %u, ssl-str: %s\n" ,
  ssl->sid_ctx_length, ssl->sid_ctx);

"id" is not md5 of host - 529a40abf407766626d15b85c1627a5f
Thats why you can see this above:
CACHE ret-len: 4, s-len: 32
CACHE ret-str: <4-byte-mess>, s-str: 529a40abf407766626d15b85c1627a5f
1
8
10

-- 
Configure bugmail: https://issues.apache.org/bugzilla/userprefs.cgi?tab=email
------- You are receiving this mail because: -------
You are the assignee for the bug.

---------------------------------------------------------------------
To unsubscribe, e-mail: bugs-unsubscribe@httpd.apache.org
For additional commands, e-mail: bugs-help@httpd.apache.org


Mime
View raw message