httpd-bugs mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
Subject [Bug 53219] New: mod_ssl should allow to disable ssl compression
Date Fri, 11 May 2012 21:52:22 GMT

          Priority: P2
            Bug ID: 53219
           Summary: mod_ssl should allow to disable ssl compression
          Severity: enhancement
    Classification: Unclassified
                OS: All
          Hardware: All
            Status: NEW
           Version: 2.4.1
         Component: mod_ssl
           Product: Apache httpd-2

downloading large ammount of data via ssl this is not too cpu consuming on
recent CPUs but with browsers that support ssl compression you can see very CPU
intensive apache processes due to ssl compression being done. instread of 2%
cpu time (encryption only) 50% cpu time (compression+encrytion) will be taken
by one apache process in a test.

There is no way to disable ssl compression in mod_ssl even though openssl has
"SSL_OP_NO_COMPRESSION" which can be enabled via SSL_CTX_set_options since
1.0.0. For scalability reasons it would be required that ssl compression can be
turned off in mod_ssl. I would even suggest to turn it off by default because
mod_deflate is doing a much better job and can be better tuned by file types

You are receiving this mail because:
You are the assignee for the bug.

View raw message