Great ideas. Email marked as a todo for tomorrow. Will report back. Thanks.
- Michael C. On 3 Nov 2015, at 18:32, Lukas Tribus <[email protected]> wrote: >> I believe I may have discovered a bug in HAProxy 1.5.4 on CentOS 7.1, >> installed via standard repositories. >> >> I don't want to go into debugging levels of detail here, but instead >> will provide a synopsis in the hopes someone knows of a bug already or >> can confirm it warrants further investigation. > > Some proposal that would help nail it down: > - can you provide a gdb backtrace (catch the coredump or start haproxy > with gdb directly) > - try (as a workaround) without chroot > - try (as a alternative trigger) with > openssl s_client -cipher LOW -connect <ip:port> instead of the > ssl test > > > I don't think the bug is in haproxy, I think you may hit some obscure > problem in the openssl library, similar to this here: > http://blog.tinola.com/?e=36 > > > Maybe that problem reappeared in CentOs 7.1. > > > > Regards, > > Lukas > >
