Plüm wrote:
Sorry, but I do not get the purpose of this patch. Why reading from our *client* (regardless if it is SSL or not) when the backend is SSL?
The original flaw, maybe long gone, is that mod_ssl implementation was pull; on first read handshake would occur. The INIT blocking-flag was added when Doug (IIRC) noted that mod_ftp couldn't simply write to the client, the handshake wouldn't run properly. INIT let us do an initial pull from the client of nothing, soliciting the SSL handshake before Ftp Welcome. I guess I can replicate the issue by sending a echod Welcome string before soliciting the first line of text; this should prove up if ssl still needs the init flag.
