Bug#683340: Core dump in ssl proxy

To: submit@bugs.debian.org
Subject: Bug#683340: Core dump in ssl proxy
From: John Williams <john@pond-weed.com>
Date: Mon, 30 Jul 2012 22:39:19 +0100
Message-id: <[🔎] 20120730223919.75384f85@buffy.scoobygang>
Reply-to: John Williams <john@pond-weed.com>, 683340@bugs.debian.org

Package: apache2
Version: 2.2.22-9

I have got webserver A (which is apache) acting as a reverse proxy for
webserver B (which is lighttpd).
Note that I'm using the i386 version in both cases.

Webserver A is configured like this:
  SSLProxyEngine on
  SSLProxyCACertificateFile /etc/apache2/ca.crt
  SSLProxyMachineCertificateFile /etc/apache2/proxy.pem
  <Location /somewhere>
    ProxyPass https://serverb/somewhere
  </Location>

If I turn on ssl client verification on webserver B, then any attempt
to use the reverse proxy fails; webserver A returns HTTP code 500 and I
see a message like this in its error log:
  [notice] child pid 2381 exit signal Segmentation fault (11)
With client verification turned off on webserver B, everything works OK.

Reply to:

Prev by Date: apache2_2.2.22-10_i386.changes ACCEPTED into unstable
Next by Date: Bug#683340: Core dump in ssl proxy
Previous by thread: apache2_2.2.22-10_i386.changes ACCEPTED into unstable
Next by thread: Bug#683340: Core dump in ssl proxy
Index(es):
- Date
- Thread