Re: [ANNOUNCE] mod_ssl 2.8.17 for Apache 1.3.31

a k Fri, 14 May 2004 17:21:23 -0700

Did you add my eintr fix ?



If an interrupt (EINTR) occurs during the handshake
the current code will abort the handshake with:

                ssl_log(srvr,
SSL_LOG_ERROR|SSL_ADD_SSLERR|SSL_ADD_ERRNO,
                        "SSL handshake failed (server
%s, client %s)", cpVHostID,
                        conn->remote_ip != NULL ?
conn->remote_ip : "unknown");

-- the following will fix this problem:

                int err;

                err = SSL_get_error(ssl, rc);
                if( err == SSL_ERROR_WANT_READ &&
                                 
BIO_should_retry(SSL_get_rbio(ssl)) ) {
                    ssl_log(srvr,SSL_LOG_INFO,"SSL
READ ERROR IGNORED on pid (%d)\n",getpid());
                    continue;
                } else if( err == SSL_ERROR_WANT_WRITE
&&
                                 
BIO_should_retry(SSL_get_wbio(ssl)) ) {
                    ssl_log(srvr,SSL_LOG_INFO,"SSL
READ ERROR IGNORED on pid (%d)\n",getpid());
                    continue;
                }

--- "Ralf S. Engelschall" <[EMAIL PROTECTED]> wrote:
> Yesterday Apache 1.3.31 was released. I've updated
> mod_ssl 2.8 to this
> version and released the result (together with some
> other pending
> bugfixes; see below) as mod_ssl 2.8.17-1.3.31. You
> can find it under the
> usual locations:
> 
>   o http://www.modssl.org/source/
>   o  ftp://ftp.modssl.org/source/
> 
> Yours,
>                                        Ralf S.
> Engelschall
>                                       
> [EMAIL PROTECTED]
>                                       
> www.engelschall.com
> 
>   Changes with mod_ssl 2.8.17 (01-Nov-2003 to
> 11-May-2004)
> 
>    *) Upgraded to Apache 1.3.31
> 
>    *) Log the OpenSSL error stack contents if the
> crypto engine
>       load/init fails.
> 
>    *) Fixed segfault in lookup of variable
> SESSION_ID
>       in case SSL_get_session() returns NULL.
> 
>    *) Bugfix "dbm" session cache: the DBM file was
> closed
>       too early (before accessing the data).
> 
>    *) Bugfix "shmcb" session cache for situations
> where
>       the session data is bigger than the cache
> size.
> 
>
______________________________________________________________________
> Apache Interface to OpenSSL (mod_ssl)               
>    www.modssl.org
> User Support Mailing List                     
> [EMAIL PROTECTED]
> Automated List Manager                           
[EMAIL PROTECTED]



        
                
__________________________________
Do you Yahoo!?
SBC Yahoo! - Internet access at a great low price.
http://promo.yahoo.com/sbc/
______________________________________________________________________
Apache Interface to OpenSSL (mod_ssl)                   www.modssl.org
User Support Mailing List                      [EMAIL PROTECTED]
Automated List Manager                            [EMAIL PROTECTED]

Re: [ANNOUNCE] mod_ssl 2.8.17 for Apache 1.3.31

Reply via email to