Mailing List Archive: Cherokee: dev

Issue 1284 in cherokee: SSL POST REQUESTS break on Chrome 15

Index | Next | Previous | View Threaded

cherokee at googlecode

Oct 12, 2011, 3:12 PM

Post #1 of 51 (1454 views)
Permalink

Issue 1284 in cherokee: SSL POST REQUESTS break on Chrome 15

Status: New
Owner: ----

New issue 1284 by aminl...@gmail.com: SSL POST REQUESTS break on Chrome 15
http://code.google.com/p/cherokee/issues/detail?id=1284

Chrome Version : 15.0.874.24
OS Version: 6.1 (Windows 7, Windows Server 2008 R2)
URLs (if applicable) :
Other browsers tested:
Add OK or FAIL after other browsers where you have tested this issue:
Safari 5: OK
Firefox 4.x: OK
IE 7/8/9: OK

What steps will reproduce the problem?
1. Go to https://app.fluidsurveys.com/accounts/login/
2. Type anything for username/password
3. Use the request monitor and watch the request fail

What is the expected result?
If you use Chrome <= 14 or any other browser it will either log you in or
tell you bad password

What happens instead?
If you use the network inspector the connection is aborted by the browser.

Please provide any additional information below.

UserAgentString: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/535.2
(KHTML, like Gecko) Chrome/15.0.874.24 Safari/535.2

I submitted this bug to the chromium team and they say that they
intentionally changed the behavior on SSL posts.
See: http://code.google.com/p/chromium/issues/detail?id=98101#makechanges

_______________________________________________
Cherokee-dev mailing list
Cherokee-dev [at] lists
http://lists.octality.com/listinfo/cherokee-dev

cherokee at googlecode

Oct 12, 2011, 3:21 PM

Post #2 of 51 (1422 views)
Permalink

Re: Issue 1284 in cherokee: SSL POST REQUESTS break on Chrome 15 [In reply to]

Comment #1 on issue 1284 by g...@openov.nl: SSL POST REQUESTS break on
Chrome 15
http://code.google.com/p/cherokee/issues/detail?id=1284

Just wrote this to Alvaro:

Hi,

I have set up a test for the Chrome vs Cherokee vs SSL bug.

After a lot of debugging some conclusions arrive;

the Content-Length basically is set, SSL_read only gets 1 actual byte
back. and the following sequence can be seen in cherokee trace:

thread.c:0659 ( process_active_connections): Active
connections:
thread.c:0667 ( process_active_connections): \- thread
(0x6125f0) processing conn (0x622e20), phase 6 'Reading POST',
socket=18,read
thread.c:0679 ( process_active_connections): thread
(0x6125f0) processing conn (0x622e20), phase 6 'Reading POST',
socket=18, read

The post reading (thread.c:1215) already returned 'eagain', but it
does so only once. It will get there because it is shortcutted at
thread.c:771

Now after I found this, I commented it out... and 'wow' it worked
again. So... could you pretty please look at this. (And
cherokee-project.org)

Stefan

===============

The quick workaround: comment out line 771 in thread.c. No guarantees!

_______________________________________________
Cherokee-dev mailing list
Cherokee-dev [at] lists
http://lists.octality.com/listinfo/cherokee-dev

cherokee at googlecode

Oct 12, 2011, 3:25 PM

Post #3 of 51 (1425 views)
Permalink

Re: Issue 1284 in cherokee: SSL POST REQUESTS break on Chrome 15 [In reply to]

Comment #2 on issue 1284 by pig...@gmail.com: SSL POST REQUESTS break on
Chrome 15
http://code.google.com/p/cherokee/issues/detail?id=1284

The other workaround is to use rev proxy instead of *cgi

_______________________________________________
Cherokee-dev mailing list
Cherokee-dev [at] lists
http://lists.octality.com/listinfo/cherokee-dev

cherokee at googlecode

Oct 12, 2011, 3:29 PM

Post #4 of 51 (1412 views)
Permalink

Re: Issue 1284 in cherokee: SSL POST REQUESTS break on Chrome 15 [In reply to]

Updates:
Status: Accepted
Owner: alobbs
Labels: Type-Defect Priority-Critical Component-Logic Usability OpSys-All

Comment #3 on issue 1284 by ste...@konink.de: SSL POST REQUESTS break on
Chrome 15
http://code.google.com/p/cherokee/issues/detail?id=1284

(No comment was entered for this change.)

_______________________________________________
Cherokee-dev mailing list
Cherokee-dev [at] lists
http://lists.octality.com/listinfo/cherokee-dev

cherokee at googlecode

Oct 14, 2011, 12:20 PM

Post #5 of 51 (1407 views)
Permalink

Re: Issue 1284 in cherokee: SSL POST REQUESTS break on Chrome 15 [In reply to]

Comment #4 on issue 1284 by leecook...@gmail.com: SSL POST REQUESTS break
on Chrome 15
http://code.google.com/p/cherokee/issues/detail?id=1284

online.wsj.com login (drop-down on right side) also fails on https login,
but works if the form action is http. Same symptoms where it works in all
other browsers and Chrome <= 14

_______________________________________________
Cherokee-dev mailing list
Cherokee-dev [at] lists
http://lists.octality.com/listinfo/cherokee-dev

cherokee at googlecode

Oct 22, 2011, 7:52 AM

Post #6 of 51 (1377 views)
Permalink

Re: Issue 1284 in cherokee: SSL POST REQUESTS break on Chrome 15 [In reply to]

Comment #5 on issue 1284 by alobbs: SSL POST REQUESTS break on Chrome 15
http://code.google.com/p/cherokee/issues/detail?id=1284

Reproduced. A few PHP lines were enough:

===========
<?php
if ($_SERVER['REQUEST_METHOD'] == 'POST') {
echo '<h1>POST</h1>';
echo '<pre>';
print_r($_POST);
echo '</pre><hr/>';
} else {
print('<form method="POST" action="/index.php">');
print(' <input type="hidden" name="foo" value="bar">');
print(' <input type="submit">');
print('</form>');
}
?>
===========

_______________________________________________
Cherokee-dev mailing list
Cherokee-dev [at] lists
http://lists.octality.com/listinfo/cherokee-dev

cherokee at googlecode

Oct 25, 2011, 10:18 AM

Post #7 of 51 (1376 views)
Permalink

Re: Issue 1284 in cherokee: SSL POST REQUESTS break on Chrome 15 [In reply to]

Comment #6 on issue 1284 by aminl...@gmail.com: SSL POST REQUESTS break on
Chrome 15
http://code.google.com/p/cherokee/issues/detail?id=1284

Chrome 15 is now stable resulting in our site (and any other site with a
ssl certificate) to break.

What's the status on getting the fix up and running?

_______________________________________________
Cherokee-dev mailing list
Cherokee-dev [at] lists
http://lists.octality.com/listinfo/cherokee-dev

cherokee at googlecode

Oct 25, 2011, 10:45 AM

Post #8 of 51 (1368 views)
Permalink

Re: Issue 1284 in cherokee: SSL POST REQUESTS break on Chrome 15 [In reply to]

Comment #7 on issue 1284 by pig...@gmail.com: SSL POST REQUESTS break on
Chrome 15
http://code.google.com/p/cherokee/issues/detail?id=1284

As I said before... the fast workaround seems to be rev-proxy because it
fully works for me (while the non rev-proxy doesnt).

_______________________________________________
Cherokee-dev mailing list
Cherokee-dev [at] lists
http://lists.octality.com/listinfo/cherokee-dev

cherokee at googlecode

Oct 27, 2011, 9:43 AM

Post #9 of 51 (1353 views)
Permalink

Re: Issue 1284 in cherokee: SSL POST REQUESTS break on Chrome 15 [In reply to]

Comment #8 on issue 1284 by aminl...@gmail.com: SSL POST REQUESTS break on
Chrome 15
http://code.google.com/p/cherokee/issues/detail?id=1284

It seems that google has decided to give the world a 6 week window to fix
the problem:

Yes, 15.0.874.106 doesn't include 1/n-1 record splitting and, based on
policy, it's unlikely that the rest of the 15 series will. The change was
more disruptive than the beta period had suggested and we're working with
several large sites who need to update.

1/n-1 record splitting will continue on the beta and dev channels and will
reappear in 6 weeks with Chrome 16.

- from http://code.google.com/p/chromium/issues/detail?id=98101

_______________________________________________
Cherokee-dev mailing list
Cherokee-dev [at] lists
http://lists.octality.com/listinfo/cherokee-dev

cherokee at googlecode

Nov 7, 2011, 6:23 PM

Post #10 of 51 (1327 views)
Permalink

Re: Issue 1284 in cherokee: SSL POST REQUESTS break on Chrome 15 [In reply to]

Comment #9 on issue 1284 by jordan.a...@gmail.com: SSL POST REQUESTS break
on Chrome 15
http://code.google.com/p/cherokee/issues/detail?id=1284

I'm also seeing this error, and only for Chrome 16+. I don't have the
option of doing reverse proxy since I'm using the uwsgi handler. Is there
any solution for me other than recompiling? I'm not comfortable commenting
out lines of code without understanding the full effect of doing so.

Also, is this related using the uwsgi handler or is it any handler? The
comments above suggest that changes to Cherokee could fix this, but I was
unsure whether the problem exists in the server or the handler.

_______________________________________________
Cherokee-dev mailing list
Cherokee-dev [at] lists
http://lists.octality.com/listinfo/cherokee-dev

cherokee at googlecode

Nov 7, 2011, 7:46 PM

Post #11 of 51 (1318 views)
Permalink

Re: Issue 1284 in cherokee: SSL POST REQUESTS break on Chrome 15 [In reply to]

Comment #10 on issue 1284 by aminl...@gmail.com: SSL POST REQUESTS break on
Chrome 15
http://code.google.com/p/cherokee/issues/detail?id=1284

I'm using the fcgi handler, so it's not just uwsgi...

Reverse proxy can be an option, but only if you defer http processing
to another app, like gunicorn.

_______________________________________________
Cherokee-dev mailing list
Cherokee-dev [at] lists
http://lists.octality.com/listinfo/cherokee-dev

cherokee at googlecode

Dec 15, 2011, 3:53 AM

Post #12 of 51 (1247 views)
Permalink

Re: Issue 1284 in cherokee: SSL POST REQUESTS break on Chrome 15 [In reply to]

Comment #11 on issue 1284 by scai...@gmail.com: SSL POST REQUESTS break on
Chrome 15
http://code.google.com/p/cherokee/issues/detail?id=1284

Today has been released Chrome 16, and Cherokee has problems with the
Googles TLS False Start.
All the SSL post will be fail.

_______________________________________________
Cherokee-dev mailing list
Cherokee-dev [at] lists
http://lists.octality.com/listinfo/cherokee-dev

cherokee at googlecode

Dec 19, 2011, 11:22 AM

Post #13 of 51 (1218 views)
Permalink

Re: Issue 1284 in cherokee: SSL POST REQUESTS break on Chrome 15 [In reply to]

Comment #12 on issue 1284 by aminl...@gmail.com: SSL POST REQUESTS break on
Chrome 15
http://code.google.com/p/cherokee/issues/detail?id=1284

Any word on this?

_______________________________________________
Cherokee-dev mailing list
Cherokee-dev [at] lists
http://lists.octality.com/listinfo/cherokee-dev

cherokee at googlecode

Dec 19, 2011, 1:07 PM

Post #14 of 51 (1216 views)
Permalink

Re: Issue 1284 in cherokee: SSL POST REQUESTS break on Chrome 15 [In reply to]

Comment #13 on issue 1284 by ste...@konink.de: SSL POST REQUESTS break on
Chrome 15
http://code.google.com/p/cherokee/issues/detail?id=1284

See the other bug report. We are working on the new-event branch. It is not
production grade yet. But it looks promising.

_______________________________________________
Cherokee-dev mailing list
Cherokee-dev [at] lists
http://lists.octality.com/listinfo/cherokee-dev

cherokee at googlecode

Jan 4, 2012, 1:18 AM

Post #15 of 51 (1186 views)
Permalink

Re: Issue 1284 in cherokee: SSL POST REQUESTS break on Chrome 15 [In reply to]

Comment #14 on issue 1284 by arsi.hal...@gmail.com: SSL POST REQUESTS break
on Chrome 15
http://code.google.com/p/cherokee/issues/detail?id=1284

Hi Stefan, What other bug report are you referring to?

We are deploying new servers with Cherokee version 1.2.101 + uWSGI + Django
and seem to have this same issue with Chrome users. Any suggestion how to
fix this.

_______________________________________________
Cherokee-dev mailing list
Cherokee-dev [at] lists
http://lists.octality.com/listinfo/cherokee-dev

cherokee at googlecode

Jan 4, 2012, 6:55 AM

Post #16 of 51 (1183 views)
Permalink

Re: Issue 1284 in cherokee: SSL POST REQUESTS break on Chrome 15 [In reply to]

Comment #15 on issue 1284 by aminl...@gmail.com: SSL POST REQUESTS break on
Chrome 15
http://code.google.com/p/cherokee/issues/detail?id=1284

You can find a package with the quick fix (commenting out that line) that
Stefan posted about at https://launchpad.net/~sciyoshi/+archive/ppa

We've been using the package from that ppa in production for a few weeks.
It's was compiled for natty, but it installs fine on oneiric so we didn't
recompile.

_______________________________________________
Cherokee-dev mailing list
Cherokee-dev [at] lists
http://lists.octality.com/listinfo/cherokee-dev

cherokee at googlecode

Jan 4, 2012, 10:18 AM

Post #17 of 51 (1176 views)
Permalink

Re: Issue 1284 in cherokee: SSL POST REQUESTS break on Chrome 15 [In reply to]

Comment #16 on issue 1284 by shen...@gmail.com: SSL POST REQUESTS break on
Chrome 15
http://code.google.com/p/cherokee/issues/detail?id=1284

Here are my notes/log from a chat with Stefan on #cherokee IRC about the
issue:

https://gist.github.com/eb2a5f7741efb1d0053d

I believe this is the offending line that needs to be commented out:
https://github.com/cherokee/webserver/blob/master/cherokee/thread.c#L771

_______________________________________________
Cherokee-dev mailing list
Cherokee-dev [at] lists
http://lists.octality.com/listinfo/cherokee-dev

cherokee at googlecode

Jan 4, 2012, 10:35 AM

Post #18 of 51 (1179 views)
Permalink

Re: Issue 1284 in cherokee: SSL POST REQUESTS break on Chrome 15 [In reply to]

Comment #17 on issue 1284 by ste...@konink.de: SSL POST REQUESTS break on
Chrome 15
http://code.google.com/p/cherokee/issues/detail?id=1284

Today I have deployed the 'new-events' branch
https://github.com/cherokee/webserver/tree/new-events to all our servers
taking SSL post requests. Most likely Alvaro will merge soon.

_______________________________________________
Cherokee-dev mailing list
Cherokee-dev [at] lists
http://lists.octality.com/listinfo/cherokee-dev

cherokee at googlecode

Jan 5, 2012, 3:34 AM

Post #19 of 51 (1170 views)
Permalink

Re: Issue 1284 in cherokee: SSL POST REQUESTS break on Chrome 15 [In reply to]

Comment #18 on issue 1284 by lnu...@gmail.com: SSL POST REQUESTS break on
Chrome 15
http://code.google.com/p/cherokee/issues/detail?id=1284

is the package https://launchpad.net/~sciyoshi/+archive/ppa Working Fine
so I can take the patch and release a new cherokee packages for launchpad
and add the patch to Debian Unstable ?

or sould I wait for the new cherokee release with 'new-events' for the new
packages?

_______________________________________________
Cherokee-dev mailing list
Cherokee-dev [at] lists
http://lists.octality.com/listinfo/cherokee-dev

cherokee at googlecode

Jan 5, 2012, 5:15 AM

Post #20 of 51 (1171 views)
Permalink

Re: Issue 1284 in cherokee: SSL POST REQUESTS break on Chrome 15 [In reply to]

Comment #19 on issue 1284 by arsi.hal...@gmail.com: SSL POST REQUESTS break
on Chrome 15
http://code.google.com/p/cherokee/issues/detail?id=1284

We re-compiled the Cherokee with the quickfix and it seems to be working
fine. We are now running Cherokee + uWSGI + Django on Ubuntu 10.04 without
problems.
Thanks!

_______________________________________________
Cherokee-dev mailing list
Cherokee-dev [at] lists
http://lists.octality.com/listinfo/cherokee-dev

cherokee at googlecode

Jan 5, 2012, 10:42 AM

Post #21 of 51 (1170 views)
Permalink

Re: Issue 1284 in cherokee: SSL POST REQUESTS break on Chrome 15 [In reply to]

Comment #20 on issue 1284 by ste...@konink.de: SSL POST REQUESTS break on
Chrome 15
http://code.google.com/p/cherokee/issues/detail?id=1284

Wait till new-events is ready.

_______________________________________________
Cherokee-dev mailing list
Cherokee-dev [at] lists
http://lists.octality.com/listinfo/cherokee-dev

cherokee at googlecode

Jan 6, 2012, 10:02 AM

Post #22 of 51 (1170 views)
Permalink

Re: Issue 1284 in cherokee: SSL POST REQUESTS break on Chrome 15 [In reply to]

Comment #21 on issue 1284 by sare...@gmail.com: SSL POST REQUESTS break on
Chrome 15
http://code.google.com/p/cherokee/issues/detail?id=1284

We serve a lot of https content and immediately got complaints from dozens
of Chrome users about not being able to use forms when we moved our servers
to Cherokee last week. We are using fcgi handlers. At least I'm happy to
have found this thread after extensive googling and being completely
confused.

Is there an ETA for this new-events being ready? Days? Weeks?

_______________________________________________
Cherokee-dev mailing list
Cherokee-dev [at] lists
http://lists.octality.com/listinfo/cherokee-dev

cherokee at googlecode

Jan 6, 2012, 11:16 AM

Post #23 of 51 (1166 views)
Permalink

Re: Issue 1284 in cherokee: SSL POST REQUESTS break on Chrome 15 [In reply to]

Comment #22 on issue 1284 by ste...@konink.de: SSL POST REQUESTS break on
Chrome 15
http://code.google.com/p/cherokee/issues/detail?id=1284

It is already merged in the dev branch. So I guess there will be a release
candidate. Nothing is stopping you from fetching it from github.

_______________________________________________
Cherokee-dev mailing list
Cherokee-dev [at] lists
http://lists.octality.com/listinfo/cherokee-dev

cherokee at googlecode

Jan 7, 2012, 2:34 PM

Post #24 of 51 (1166 views)
Permalink

Re: Issue 1284 in cherokee: SSL POST REQUESTS break on Chrome 15 [In reply to]

Comment #23 on issue 1284 by ste...@konink.de: SSL POST REQUESTS break on
Chrome 15
http://code.google.com/p/cherokee/issues/detail?id=1284

http://www.cherokee-project.com/download/pre-releases/cherokee-1.3.0A1.tar.gz

_______________________________________________
Cherokee-dev mailing list
Cherokee-dev [at] lists
http://lists.octality.com/listinfo/cherokee-dev

cherokee at googlecode

Jan 7, 2012, 2:54 PM

Post #25 of 51 (1164 views)
Permalink

Re: Issue 1284 in cherokee: SSL POST REQUESTS break on Chrome 15 [In reply to]

Comment #24 on issue 1284 by sare...@gmail.com: SSL POST REQUESTS break on
Chrome 15
http://code.google.com/p/cherokee/issues/detail?id=1284

Thanks.

_______________________________________________
Cherokee-dev mailing list
Cherokee-dev [at] lists
http://lists.octality.com/listinfo/cherokee-dev

cherokee at googlecode

Jan 7, 2012, 9:29 PM

Post #26 of 51 (826 views)
Permalink

Re: Issue 1284 in cherokee: SSL POST REQUESTS break on Chrome 15 [In reply to]

Comment #25 on issue 1284 by sare...@gmail.com: SSL POST REQUESTS break on
Chrome 15
http://code.google.com/p/cherokee/issues/detail?id=1284

The cherokee-admin in this tar doesn't run correctly. Seems it doesn't like
the version number..?

Attachments:
cherokee-admin_error.txt 4.5 KB

_______________________________________________
Cherokee-dev mailing list
Cherokee-dev [at] lists
http://lists.octality.com/listinfo/cherokee-dev

cherokee at googlecode

Jan 8, 2012, 1:00 PM

Post #27 of 51 (826 views)
Permalink

Re: Issue 1284 in cherokee: SSL POST REQUESTS break on Chrome 15 [In reply to]

Comment #26 on issue 1284 by nha...@gmail.com: SSL POST REQUESTS break on
Chrome 15
http://code.google.com/p/cherokee/issues/detail?id=1284

I tried installing that version to solve my ssl issues and now I get a 503
error from cherokee-admin with the following backtrace:
http://pastebin.com/hJmntPvs

I also now get this:
http://dl.dropbox.com/u/1916622/screenshots/2012-01-08.15%3A58%3A50.001.png

_______________________________________________
Cherokee-dev mailing list
Cherokee-dev [at] lists
http://lists.octality.com/listinfo/cherokee-dev

cherokee at googlecode

Jan 8, 2012, 1:24 PM

Post #28 of 51 (829 views)
Permalink

Re: Issue 1284 in cherokee: SSL POST REQUESTS break on Chrome 15 [In reply to]

Comment #27 on issue 1284 by nha...@gmail.com: SSL POST REQUESTS break on
Chrome 15
http://code.google.com/p/cherokee/issues/detail?id=1284

Resolved my issues by uninstalling, then compiling 1.2.99b with the
commented out line above. Somehow I am floored that worked!

Thanks to you all for your great work.

_______________________________________________
Cherokee-dev mailing list
Cherokee-dev [at] lists
http://lists.octality.com/listinfo/cherokee-dev

cherokee at googlecode

Jan 8, 2012, 1:55 PM

Post #29 of 51 (827 views)
Permalink

Re: Issue 1284 in cherokee: SSL POST REQUESTS break on Chrome 15 [In reply to]

Comment #28 on issue 1284 by sare...@gmail.com: SSL POST REQUESTS break on
Chrome 15
http://code.google.com/p/cherokee/issues/detail?id=1284

The cherokee-admin 503 error is the same thing I was referring to. If you
launch it with the -x flag you'll see a traceback like the one I attached.

Looks like the dev branch version of Cherokee is working okay for me. Will
continue testing.

_______________________________________________
Cherokee-dev mailing list
Cherokee-dev [at] lists
http://lists.octality.com/listinfo/cherokee-dev

cherokee at googlecode

Jan 15, 2012, 12:49 PM

Post #30 of 51 (815 views)
Permalink

Re: Issue 1284 in cherokee: SSL POST REQUESTS break on Chrome 15 [In reply to]

Comment #29 on issue 1284 by jordan.a...@gmail.com: SSL POST REQUESTS break
on Chrome 15
http://code.google.com/p/cherokee/issues/detail?id=1284

I was able to bypass the error as well, using the version at
http://www.cherokee-project.com/download/pre-releases/cherokee-1.3.0A2.tar.gz

This worked for me on Ubuntu 11.10

#download latest dev version of cherokee
wget
http://www.cherokee-project.com/download/pre-releases/cherokee-1.3.0A2.tar.gz
tar -zxvf cherokee-1.3.0

#remove current version
/etc/init.d/cherokee stop
sudo apt-get remove cherokee cherokee-admin

cp contrib/cherokee /etc/init.d/
./configure --localstatedir=/var --prefix=/usr --sysconfdir=/etc
--with-wwwroot=/var/www
make
sudo make install

/etc/init.d/cherokee start

_______________________________________________
Cherokee-dev mailing list
Cherokee-dev [at] lists
http://lists.octality.com/listinfo/cherokee-dev

cherokee at googlecode

Jan 15, 2012, 12:53 PM

Post #31 of 51 (817 views)
Permalink

Re: Issue 1284 in cherokee: SSL POST REQUESTS break on Chrome 15 [In reply to]

Comment #30 on issue 1284 by jordan.a...@gmail.com: SSL POST REQUESTS break
on Chrome 15
http://code.google.com/p/cherokee/issues/detail?id=1284

I was able to bypass the error as well, using the version at
http://www.cherokee-project.com/download/pre-releases/cherokee-1.3.0A2.tar.gz

This worked for me on Ubuntu 11.10

#download latest dev version of cherokee
wget
http://www.cherokee-project.com/download/pre-releases/cherokee-1.3.0A2.tar.gz
tar -zxvf cherokee-1.3.0

#remove current version
/etc/init.d/cherokee stop
sudo apt-get remove cherokee cherokee-admin

cd cherokee-1.3.0
cp contrib/cherokee /etc/init.d/
./configure --localstatedir=/var --prefix=/usr --sysconfdir=/etc
--with-wwwroot=/var/www
make
sudo make install

/etc/init.d/cherokee start

_______________________________________________
Cherokee-dev mailing list
Cherokee-dev [at] lists
http://lists.octality.com/listinfo/cherokee-dev

cherokee at googlecode

Jan 17, 2012, 2:03 AM

Post #32 of 51 (816 views)
Permalink

Re: Issue 1284 in cherokee: SSL POST REQUESTS break on Chrome 15 [In reply to]

Comment #31 on issue 1284 by peter.bo...@gmail.com: SSL POST REQUESTS break
on Chrome 15
http://code.google.com/p/cherokee/issues/detail?id=1284

I can confirm the issue is resolved by upgrading from 1.2.101 to 1.3.0A2.

_______________________________________________
Cherokee-dev mailing list
Cherokee-dev [at] lists
http://lists.octality.com/listinfo/cherokee-dev

cherokee at googlecode

Jan 19, 2012, 3:02 AM

Post #33 of 51 (816 views)
Permalink

Re: Issue 1284 in cherokee: SSL POST REQUESTS break on Chrome 15 [In reply to]

Comment #32 on issue 1284 by adrian.p...@gmail.com: SSL POST REQUESTS break
on Chrome 15
http://code.google.com/p/cherokee/issues/detail?id=1284

Unfortunately upgrading to 1.3.0A2 didn't resolve the issue for me.

I still get:
"IOError: error waiting for wsgi.input data" from Chrome 16.0.912.75 on
WIN32 when trying to post data over HTTPS.

_______________________________________________
Cherokee-dev mailing list
Cherokee-dev [at] lists
http://lists.octality.com/listinfo/cherokee-dev

cherokee at googlecode

Feb 10, 2012, 12:34 AM

Post #34 of 51 (781 views)
Permalink

Re: Issue 1284 in cherokee: SSL POST REQUESTS break on Chrome 15 [In reply to]

Comment #33 on issue 1284 by martin.b...@gmail.com: SSL POST REQUESTS break
on Chrome 15
http://code.google.com/p/cherokee/issues/detail?id=1284

I had this problem too with Chrome 16 too. I just upgraded to Chrome 17 and
this problem seems gone now.
Can anyone confirm this?

_______________________________________________
Cherokee-dev mailing list
Cherokee-dev [at] lists
http://lists.octality.com/listinfo/cherokee-dev

cherokee at googlecode

Feb 10, 2012, 12:58 AM

Post #35 of 51 (783 views)
Permalink

Re: Issue 1284 in cherokee: SSL POST REQUESTS break on Chrome 15 [In reply to]

Comment #34 on issue 1284 by andreas....@gmail.com: SSL POST REQUESTS break
on Chrome 15
http://code.google.com/p/cherokee/issues/detail?id=1284

Yes, I can confirm this. Having OSX 10.6.8 and Chrome 17.0.963.46. Problem
seems to be gone.

(Are we safe that the problem does not come back again in Chrome?)

_______________________________________________
Cherokee-dev mailing list
Cherokee-dev [at] lists
http://lists.octality.com/listinfo/cherokee-dev

cherokee at googlecode

Feb 10, 2012, 4:45 AM

Post #36 of 51 (782 views)
Permalink

Re: Issue 1284 in cherokee: SSL POST REQUESTS break on Chrome 15 [In reply to]

Comment #35 on issue 1284 by martin.b...@gmail.com: SSL POST REQUESTS break
on Chrome 15
http://code.google.com/p/cherokee/issues/detail?id=1284

I hope so but I really don't know. Nevertheless I hope Cherokee 1.3 stable
will be out soon.

_______________________________________________
Cherokee-dev mailing list
Cherokee-dev [at] lists
http://lists.octality.com/listinfo/cherokee-dev

cherokee at googlecode

Feb 10, 2012, 7:46 AM

Post #37 of 51 (781 views)
Permalink

Re: Issue 1284 in cherokee: SSL POST REQUESTS break on Chrome 15 [In reply to]

Comment #36 on issue 1284 by sare...@gmail.com: SSL POST REQUESTS break on
Chrome 15
http://code.google.com/p/cherokee/issues/detail?id=1284

It seems Chrome started forcing its "false start" feature (an optimization
of TSL handshakes,
http://www.imperialviolet.org/2011/08/31/falsestartupgrade.html) around
version 15. My guess is that now with version 17 they have tweaked the
feature so it falls back to its prior working protocol for compatibility.

_______________________________________________
Cherokee-dev mailing list
Cherokee-dev [at] lists
http://lists.octality.com/listinfo/cherokee-dev

cherokee at googlecode

Feb 12, 2012, 12:55 PM

Post #38 of 51 (783 views)
Permalink

Re: Issue 1284 in cherokee: SSL POST REQUESTS break on Chrome 15 [In reply to]

Comment #37 on issue 1284 by ch...@lincolnloop.com: SSL POST REQUESTS break
on Chrome 15
http://code.google.com/p/cherokee/issues/detail?id=1284

I'm still experiencing this problem with Ubuntu 11.04 and Chrome
17.0.963.46 beta.

_______________________________________________
Cherokee-dev mailing list
Cherokee-dev [at] lists
http://lists.octality.com/listinfo/cherokee-dev

cherokee at googlecode

Feb 12, 2012, 1:09 PM

Post #39 of 51 (783 views)
Permalink

Re: Issue 1284 in cherokee: SSL POST REQUESTS break on Chrome 15 [In reply to]

Comment #38 on issue 1284 by ste...@konink.de: SSL POST REQUESTS break on
Chrome 15
http://code.google.com/p/cherokee/issues/detail?id=1284

It is fixed in the development branch.

_______________________________________________
Cherokee-dev mailing list
Cherokee-dev [at] lists
http://lists.octality.com/listinfo/cherokee-dev

cherokee at googlecode

Feb 23, 2012, 10:02 AM

Post #40 of 51 (747 views)
Permalink

Re: Issue 1284 in cherokee: SSL POST REQUESTS break on Chrome 15 [In reply to]

Comment #39 on issue 1284 by silverha...@gmail.com: SSL POST REQUESTS break
on Chrome 15
http://code.google.com/p/cherokee/issues/detail?id=1284

Any word on when this will be in stable? IE9 has the same problem.
Cherokee web server 1.0.8 (Nov 28, 2011) Debian

_______________________________________________
Cherokee-dev mailing list
Cherokee-dev [at] lists
http://lists.octality.com/listinfo/cherokee-dev

cherokee at googlecode

Feb 23, 2012, 4:56 PM

Post #41 of 51 (750 views)
Permalink

Re: Issue 1284 in cherokee: SSL POST REQUESTS break on Chrome 15 [In reply to]

Comment #40 on issue 1284 by ste...@konink.de: SSL POST REQUESTS break on
Chrome 15
http://code.google.com/p/cherokee/issues/detail?id=1284

Development branch = Stable.

_______________________________________________
Cherokee-dev mailing list
Cherokee-dev [at] lists
http://lists.octality.com/listinfo/cherokee-dev

cherokee at googlecode

Feb 24, 2012, 5:26 AM

Post #42 of 51 (747 views)
Permalink

Re: Issue 1284 in cherokee: SSL POST REQUESTS break on Chrome 15 [In reply to]

Comment #41 on issue 1284 by bradez...@gmail.com: SSL POST REQUESTS break
on Chrome 15
http://code.google.com/p/cherokee/issues/detail?id=1284

if dev branch is "stable" then is there a way to update from the repo in
ubuntu? I'd rather not have to uninstall/delete the repo version then have
to install another version from source, esp. on a production server.

_______________________________________________
Cherokee-dev mailing list
Cherokee-dev [at] lists
http://lists.octality.com/listinfo/cherokee-dev

cherokee at googlecode

Feb 24, 2012, 4:26 PM

Post #43 of 51 (748 views)
Permalink

Re: Issue 1284 in cherokee: SSL POST REQUESTS break on Chrome 15 [In reply to]

Comment #42 on issue 1284 by jeremy.v...@gmail.com: SSL POST REQUESTS break
on Chrome 15
http://code.google.com/p/cherokee/issues/detail?id=1284

@stefan if "development" == "stable" then we would find that it would be
called "stable", not "development". As that is not the case, clearly the
lead developer does not share your view, therefore we should not treat it
as being stable.

_______________________________________________
Cherokee-dev mailing list
Cherokee-dev [at] lists
http://lists.octality.com/listinfo/cherokee-dev

cherokee at googlecode

Feb 25, 2012, 7:37 AM

Post #44 of 51 (744 views)
Permalink

Re: Issue 1284 in cherokee: SSL POST REQUESTS break on Chrome 15 [In reply to]

Comment #43 on issue 1284 by ste...@konink.de: SSL POST REQUESTS break on
Chrome 15
http://code.google.com/p/cherokee/issues/detail?id=1284

If stable is broken, and development works. What is stable?

_______________________________________________
Cherokee-dev mailing list
Cherokee-dev [at] lists
http://lists.octality.com/listinfo/cherokee-dev

cherokee at googlecode

Feb 25, 2012, 9:25 AM

Post #45 of 51 (740 views)
Permalink

Re: Issue 1284 in cherokee: SSL POST REQUESTS break on Chrome 15 [In reply to]

Comment #44 on issue 1284 by sare...@gmail.com: SSL POST REQUESTS break on
Chrome 15
http://code.google.com/p/cherokee/issues/detail?id=1284

Whoa, this has gotten philosophical...

If it's any consolation I've been running the dev branch in production 24/7
since January 8th.

_______________________________________________
Cherokee-dev mailing list
Cherokee-dev [at] lists
http://lists.octality.com/listinfo/cherokee-dev

cherokee at googlecode

Mar 2, 2012, 3:16 PM

Post #46 of 51 (722 views)
Permalink

Re: Issue 1284 in cherokee: SSL POST REQUESTS break on Chrome 15 [In reply to]

Comment #45 on issue 1284 by k...@cloudquo.com: SSL POST REQUESTS break on
Chrome 15
http://code.google.com/p/cherokee/issues/detail?id=1284

Also confirmed 1.3.0 fixed my issue. I definitely look forward to more
updates, this is by far my favorite web server.

_______________________________________________
Cherokee-dev mailing list
Cherokee-dev [at] lists
http://lists.octality.com/listinfo/cherokee-dev

cherokee at googlecode

Jun 8, 2012, 9:12 AM

Post #47 of 51 (574 views)
Permalink

Re: Issue 1284 in cherokee: SSL POST REQUESTS break on Chrome 15 [In reply to]

Comment #47 on issue 1284 by ste...@konink.de: SSL POST REQUESTS break on
Chrome 15
http://code.google.com/p/cherokee/issues/detail?id=1284

Issue 1358 has been merged into this issue.

_______________________________________________
Cherokee-dev mailing list
Cherokee-dev [at] lists
http://lists.octality.com/listinfo/cherokee-dev

cherokee at googlecode

Jun 8, 2012, 9:24 AM

Post #48 of 51 (570 views)
Permalink

Re: Issue 1284 in cherokee: SSL POST REQUESTS break on Chrome 15 [In reply to]

Comment #48 on issue 1284 by nha...@gmail.com: SSL POST REQUESTS break on
Chrome 15
http://code.google.com/p/cherokee/issues/detail?id=1284

I have begun experiencing this issue once again, even after the fix that
worked in my earlier post (#27).

I'm seeing it in Chromium 18.0.1025.151 but customers on sites, running
Chrome, are also experiencing it.

_______________________________________________
Cherokee-dev mailing list
Cherokee-dev [at] lists
http://lists.octality.com/listinfo/cherokee-dev

cherokee at googlecode

Jun 8, 2012, 9:25 AM

Post #49 of 51 (572 views)
Permalink

Re: Issue 1284 in cherokee: SSL POST REQUESTS break on Chrome 15 [In reply to]

Comment #49 on issue 1284 by aminl...@gmail.com: SSL POST REQUESTS break on
Chrome 15
http://code.google.com/p/cherokee/issues/detail?id=1284

Strange, it's still working for me, using that fix (the one which involves
commenting out a line)

_______________________________________________
Cherokee-dev mailing list
Cherokee-dev [at] lists
http://lists.octality.com/listinfo/cherokee-dev

cherokee at googlecode

Jun 9, 2012, 3:51 PM

Post #50 of 51 (569 views)
Permalink

Re: Issue 1284 in cherokee: SSL POST REQUESTS break on Chrome 15 [In reply to]

Comment #50 on issue 1284 by ste...@opengeo.nl: SSL POST REQUESTS break on
Chrome 15
http://code.google.com/p/cherokee/issues/detail?id=1284

While actually trying to fix this thing in stable and started to Google I
found this:

http://arstechnica.com/business/2012/04/google-abandons-noble-experiment-to-make-ssl-less-painful/

So in Chrome 20... everyone is back to where we were. And yes that
commenting out should work, but it is not the actual 'fix'.

_______________________________________________
Cherokee-dev mailing list
Cherokee-dev [at] lists
http://lists.octality.com/listinfo/cherokee-dev

cherokee at googlecode

Jun 9, 2012, 5:04 PM

Post #51 of 51 (95 views)
Permalink

Re: Issue 1284 in cherokee: SSL POST REQUESTS break on Chrome 15 [In reply to]

Updates:
Status: Fixed
Owner: ste...@konink.de

Comment #51 on issue 1284 by ste...@konink.de: SSL POST REQUESTS break on
Chrome 15
http://code.google.com/p/cherokee/issues/detail?id=1284

I think I can proudly present the "true" stable fix. After reading on Stack
Overflow that people could get output of SSL_pending but only after
SSL_read I started to realise this might be the cause of our issues.

http://stackoverflow.com/questions/6616976/why-does-this-ssl-pending-call-always-return-zero

My initial patch caused the check 'is there more data to be processed?'
always be true. After that true, the statemachine would just go on with
processing, doing what it had to do given that state, read a bit more, and
then realise: there is no data.

The check is there for a reason, don't do the entire statemachine thing, if
you don't have data to process. The trivial fix is the following:

--- a/cherokee/cryptor_libssl.c
+++ b/cherokee/cryptor_libssl.c
@@ -927,6 +927,7 @@ _socket_read (cherokee_cryptor_socket_libssl_t *cryp,
static int
_socket_pending (cherokee_cryptor_socket_libssl_t *cryp)
{
+ SSL_read(cryp->session, NULL, 0);
return (SSL_pending (cryp->session) > 0);
}

We just say to OpenSSL; do your thing read stuff, we just don't want your
data yet, keep it in your own buffers. After that, SSL_pending does
return: "Geez, got some data for you!"

We progress with the Cherokee state machine, and after a while we are
actually doing another SSL_read, with a buffer attached to it, and read out
what data we need and going to use.

_______________________________________________
Cherokee-dev mailing list
Cherokee-dev [at] lists
http://lists.octality.com/listinfo/cherokee-dev

Index | Next | Previous | View Threaded

Interested in having your list archived? Contact Gossamer Threads