- [-conn17-] Error: nsopenssl: EOF during SSL handshake
- [-conn0-] Error: nsopenssl: nsdserver: connection closed by peer
- [-conn15-] Error: nsopenssl: error during SSL handshake: Connection reset by peer
Steve,
There's a bug in NsOpenSSLSend() in nsopenssl 2.1/2.1a; the retry code is seriously broken. The bug results in intermittent failures of large POSTs. This may or may not be the source of your problem, but it's worth a shot.
Here's the patch we're using to get around this issue (for 2.1a--if you need a 2.1 version, just say so):
---- 8< ---------------------------------------------------
--- nsopenssl/ssl.c.orig Wed Dec 31 11:50:51 2003
+++ nsopenssl/ssl.c Wed Dec 31 11:53:34 2003
@@ -235,7 +235,8 @@
do {
rc = SSL_write(ccPtr->ssl, buffer, towrite);
- towrite -= rc;
+ if (rc > 0)
+ return rc;
} while (BIO_should_retry(ccPtr->ssl->wbio) &&
BIO_should_write(ccPtr->ssl->wbio));
---- 8< ---------------------------------------------------
We've been using this in production for 9 months now, with no problems (and no recurrences of the bug it was intended to fix). Hope this helps.
- John
-- AOLserver - http://www.aolserver.com/
To Remove yourself from this list, simply send an email to <[EMAIL PROTECTED]> with the body of "SIGNOFF AOLSERVER" in the email message. You can leave the Subject: field of your email blank.
