PQ78320 for IBM HTTP Server V2.0.42
 Downloadable files
 
Abstract
Initial SSL handshake does not honor configured timeouts, so connections are stuck in read indefinitely.
 
Download Description
If a client opens a connection to the SSL socket but never sends any data, it will cause the IHS/Apache child that is handling the request to hang. The child status on the server-status output will show a 'R'. The problem exists for IBM® HTTP Server V2.0.42.

This occurs when the client opens a socket on the SSL port for IHS. The server then begins the SSL Handshake process by initiating a read() to receive the 'client hello' message which should be the first message sent by the client. However, the client never sends any data and never closes the socket. As a result, IHS is hung in the read() indefinitely. In order to complete the handshake, the socket must be in blocking mode.

PQ78320 updates the SSL component to use the IHS-configured network time-out (see Time-out directive) for reading the SSL handshake data.
 
Prerequisites
NONE
 
 
Installation Instructions
Please review the readme.txt for detailed installation instructions.
 
URL LANGUAGE SIZE(Bytes)
Readme US English 1714
 
Download package
What is DD?
Download RELEASE DATE LANGUAGE SIZE(Bytes) Download Options
PQ78320 - AIX 9/10/2003 US English 150528 FTP DD
PQ78320 - HP 9/10/2003 US English 289280 FTP DD
PQ78320 - Linux 9/10/2003 US English 143360 FTP DD
PQ78320 - Solaris 9/10/2003 US English 415232 FTP DD
PQ78320 - Windows 9/10/2003 US English 46968 FTP DD
 
Technical support
1-800-IBM-SERV (U.S. Only)
 
 


Document Information


Product categories: Software > Application Servers > Distributed Application & Web Servers > IBM HTTP Server > SSL
Operating system(s): Windows
Software version: 2.0.42.2
Software edition:
Reference #: 4005530
IBM Group: Software Group
Modified date: May 27, 2004