Re: [VOTE] Release Apache httpd 2.4.9 as GA

Fri, 14 Mar 2014 11:15:08 -0700 

On 13.03.2014 17:49, Jim Jagielski wrote:
> The pre-release test tarballs for Apache httpd 2.4.9 can be found
> at the usual place:
> 
>       http://httpd.apache.org/dev/dist/
> 
> I'm calling a VOTE on releasing these as Apache httpd 2.4.9 GA.
> 
> [ ] +1: Good to go
> [ ] +0: meh
> [ ] -1: Danger Will Robinson. And why.
> 
> Vote will last the normal 72 hrs.
> 
> NOTE: The *-deps are only there for convenience.

I get some test failures:

t/ssl/pr12355.t                   (Wstat: 0 Tests: 10 Failed: 4)
  Failed tests:  3-4, 7-8
t/ssl/pr43738.t                   (Wstat: 0 Tests: 4 Failed: 2)
  Failed tests:  1-2

They happen during renegotiation. All parts should be using OpenSSL
1.0.1f. The requests end up with status 403 instead of 200.

trace log:

ssl_engine_kernel.c(778): AH02260: Performing full renegotiation:
complete handshake protocol (client does support secure renegotiation)
ssl_engine_kernel.c(1801): OpenSSL: Handshake: start
ssl_engine_kernel.c(1809): OpenSSL: Loop: SSL renegotiate ciphers
ssl_engine_kernel.c(1809): OpenSSL: Loop: SSLv3 write hello request A
core_filters.c(525): core_output_filter: flushing because of FLUSH bucket
ssl_engine_kernel.c(1809): OpenSSL: Loop: SSLv3 flush data
ssl_engine_kernel.c(1809): OpenSSL: Loop: SSLv3 write hello request C
[client 127.0.0.1:39714] AH02226: Awaiting re-negotiation handshake
ssl_engine_kernel.c(1801): OpenSSL: Handshake: start
ssl_engine_kernel.c(1809): OpenSSL: Loop: before accept initialization
core_filters.c(525): core_output_filter: flushing because of FLUSH bucket
ssl_engine_io.c(2039): OpenSSL: read 5/5 bytes from BIO#2a75a8 [mem:
2aeb5b] (BIO dump follows)
core_filters.c(525): core_output_filter: flushing because of FLUSH bucket
ssl_engine_io.c(2039): OpenSSL: read 458/458 bytes from BIO#2a75a8 [mem:
2aeb60] (BIO dump follows)
ssl_engine_kernel.c(1920): AH02043: SSL virtual host for servername
localhost found
core_filters.c(525): core_output_filter: flushing because of FLUSH bucket
ssl_engine_kernel.c(1819): OpenSSL: Write: SSLv3 read client hello C
ssl_engine_kernel.c(1838): OpenSSL: Exit: error in SSLv3 read client hello C
[client 127.0.0.1:39714] AH02261: Re-negotiation handshake failed: Not
accepted by client!?

More complete log under

http://people.apache.org/~rjung/renegotitation-failure-2.4.9.txt

Regards,

Rainer

Reply via email to