diff options
| author | Dr. Stephen Henson <steve@openssl.org> | 2000-02-15 14:19:44 +0000 |
|---|---|---|
| committer | Dr. Stephen Henson <steve@openssl.org> | 2000-02-15 14:19:44 +0000 |
| commit | de469ef21e4117908cc770f9ca25a26a01f9be38 (patch) | |
| tree | b2bfc3e899716f5ef736a66a7b81c15744e69c5f /bugs | |
| parent | ea96c4bc7f4983348d45257d4453490330404b18 (diff) | |
Fix for Netscape "hang" bug.
Diffstat (limited to 'bugs')
| -rw-r--r-- | bugs/SSLv3 | 8 |
1 files changed, 8 insertions, 0 deletions
diff --git a/bugs/SSLv3 b/bugs/SSLv3 index 2e22a65cdd..db53e1343a 100644 --- a/bugs/SSLv3 +++ b/bugs/SSLv3 @@ -39,3 +39,11 @@ SSL_shutdown() and still sharing the socket with its parent). Netscape, when using export ciphers, will accept a 1024 bit temporary RSA key. It is supposed to only accept 512. + +If Netscape connects to a server which requests a client certificate +it will frequently hang after the user has selected one and never +complete the connection. Hitting "Stop" and reload fixes this and +all subsequent connections work fine. This appears to be because +Netscape wont read any new records in when it is awaiting a server +done message at this point. The fix is to send the certificate request +and server done messages in one record. |