https://issues.apache.org/bugzilla/show_bug.cgi?id=55148
Bug ID: 55148
Summary: Error during SSL Handshake with remote server
Product: Apache httpd-2
Version: 2.2.24
Hardware: PC
OS: Linux
Status: NEW
Severity: normal
Priority: P2
Component: mod_proxy
Assignee: [email protected]
Reporter: [email protected]
We upgrade our apache from 2.2.17 to 2.2.24. We use the same setting. However,
we keep getting 502 bad gateway issue.
I tried following settings as well, but no luck.
SSLProxyCACertificateFile /work/users/infra/proxy/proxyCA.crt
SSLProxyMachineCertificateFile /work/users/infra/proxy/lp97643.pem
SSLProxyVerify none
SSLProxyCheckPeerCN off
SSLProxyCheckPeerExpire off
I have verified by proxyCA with curl, it works fine.
I struggled with this issue for couple of weeks. I doubt this might be new bug.
Thanks a lot,
The error log:
[Wed Jun 26 19:08:35 2013] [error] (502)Unknown error 502: proxy: pass request
body failed to 142.63.42.254:443
[Wed Jun 26 19:08:35 2013] [error] [client 192.168.156.135] proxy: Error during
SSL Handshake with remote server returned by /Offline/, referer:
https://abc.xyz.com/Offline/
[Wed Jun 26 19:08:35 2013] [error] proxy: pass request body failed to
142.63.42.254:443 from 192.168.156.135 ()
The config:
NameVirtualHost *:50211
<VirtualHost *:50211>
ServerAdmin [email protected]
DocumentRoot "/work/users/infra/proxy/PR_Offline_https/htdocs"
<Directory "/work/users/infra/proxy/PR_Offline_https/htdocs">
Allow from all
</Directory>
SSLEngine on
SSLCipherSuite
ALL:!ADH:!EXPORT56:RC4+RSA:+HIGH:+MEDIUM:+LOW:+SSLv2:+EXP:+eNULL
SSLProxyEngine on
SSLCertificateFile /work/users/infra/proxy/lp97643.crt
SSLCertificateKeyFile /work/users/infra/proxy/lp97643.key
RequestHeader set X-Authenticated-User %{REMOTE_USER}e
ProxyRequests On
ProxyVia On
ProxyPreserveHost On
ProxyPass /Offline http://142.63.42.254/Offline/
ProxyPassReverse /Offline http://142.63.42.254/OfflineS/
BrowserMatch ".*MSIE.*" \
nokeepalive ssl-unclean-shutdown \
downgrade-1.0 force-response-1.0
SetEnv force-proxy-request-1.0 1
SetEnv proxy-nokeepalive 1
</VirtualHost>
The compile settings:
bin/httpd -V
Server version: Apache/2.2.24 (Unix)
Server built: May 21 2013 14:49:46
Server's Module Magic Number: 20051115:31
Server loaded: APR 1.4.6, APR-Util 1.4.1
Compiled using: APR 1.4.6, APR-Util 1.4.1
Architecture: 64-bit
Server MPM: Prefork
threaded: no
forked: yes (variable process count)
Server compiled with....
-D APACHE_MPM_DIR="server/mpm/prefork"
-D APR_HAS_SENDFILE
-D APR_HAS_MMAP
-D APR_HAVE_IPV6 (IPv4-mapped addresses enabled)
-D APR_USE_SYSVSEM_SERIALIZE
-D APR_USE_PTHREAD_SERIALIZE
-D SINGLE_LISTEN_UNSERIALIZED_ACCEPT
-D APR_HAS_OTHER_CHILD
-D AP_HAVE_RELIABLE_PIPED_LOGS
-D DYNAMIC_MODULE_LIMIT=128
-D HTTPD_ROOT="/apps/infra/apache/2.2.24"
-D SUEXEC_BIN="/apps/infra/apache/2.2.24/bin/suexec"
-D DEFAULT_PIDLOG="logs/httpd.pid"
-D DEFAULT_SCOREBOARD="logs/apache_runtime_status"
-D DEFAULT_LOCKFILE="logs/accept.lock"
-D DEFAULT_ERRORLOG="logs/error_log"
-D AP_TYPES_CONFIG_FILE="conf/mime.types"
-D SERVER_CONFIG_FILE="conf/httpd.conf"
--
You are receiving this mail because:
You are the assignee for the bug.
---------------------------------------------------------------------
To unsubscribe, e-mail: [email protected]
For additional commands, e-mail: [email protected]
