Uploaded image for project: 'Bitrepository'
  1. Bitrepository
  2. BITMAG-1059

HTTPS file exchange fails for apache webdav server with certain configuration

    XMLWordPrintable

Details

    • Bug
    • Resolution: Fixed
    • Minor
    • 1.5
    • 1.0, 1.1, 1.2, 1.3, 1.4
    • File exchange
    • None
    • Bit Sprint 1
    • Hide

      Marking this as fixed as the linked solution is already implemented.

      Had a hard time actually testing this, but I'm willing to put my head on the block saying that it's been fixed.

      Show
      Marking this as fixed as the linked solution is already implemented. Had a hard time actually testing this, but I'm willing to put my head on the block saying that it's been fixed.

    Description

      HTTPS PUT on Apache webdav works fine with certificates verified i both ends, as long as the apache server is configured to require certificate verification in all namespaces on the (virtual) server.

      If only a partial namespace (say /dav/) requires certificate verification, the server will fail the request with: 'HTTP/1.1 413 Request Entity Too Large'

      The problem boils down to the java http client not being too polite with the server, the problem is explained here: http://stackoverflow.com/questions/14281628/ssl-renegotiation-with-client-certificate-causes-server-buffer-overflow

      So to fix this, we need to start using a httpclient that allows for the HTTP header "Expect: 100-continue".
      The java ssl library should allow the header in Java 7, so a fix might involve ditching Java 6 support.

      Attachments

        Activity

          People

            rbkr Rasmus Bohl Kristensen
            ktc Kim Christensen (Inactive)
            Watchers:
            1 Start watching this issue

            Dates

              Created:
              Updated:
              Resolved: