Kamesh Jayachandran wrote:
> When I built the server against openssl-1.0.0-beta3, I could *not*
> access svn at all using svn client while I could access the same via
> browser.
>
> Any clues?
The TLS session ticket extension might be the culprit here (or more
precisely, OpenSSL's implementation of that extension). Can you try the
attached patch and see whether it makes a difference?
Kaspar
--- httpd-2.2.14/modules/ssl/ssl_engine_init.c.orig 2009-08-16
17:53:12.000000000 +0200
+++ httpd-2.2.14/modules/ssl/ssl_engine_init.c 2009-10-21 18:49:05.000000000
+0200
@@ -382,6 +382,8 @@ static void ssl_init_ctx_tls_extensions(
ssl_log_ssl_error(APLOG_MARK, APLOG_ERR, s);
ssl_die();
}
+
+ SSL_CTX_set_options(mctx->ssl_ctx, SSL_OP_NO_TICKET);
}
#endif
