Keep Server Online
If you find the Apache Lounge, the downloads and overall help useful, please express your satisfaction with a donation.
or
A donation makes a contribution towards the costs, the time and effort that's going in this site and building.
Thank You! Steffen
Your donations will help to keep this site alive and well, and continuing building binaries. Apache Lounge is not sponsored.
| |
|
 Topic: SVN over HTTPS with mod_svn-1.7.7 :: SSL library mismatch ? |
|
| Author |
|
perryv
Joined: 07 Nov 2012
Posts: 1
|
 Posted: Wed 07 Nov '12 8:50 Post subject: SSL library mismatch problem with mod_svn-1.7.7 |
 |
|
Hi, I'm getting an "SSL library mismatch" problem when I attempt to use SVN over HTTPS.
I installed httpd-2.4.3-win32-VC9 (Apache Lounge binary) and mod_svn-1.7.7-ap24-x86 (downloaded from Apache Haus) on Windows Server 2008 R2 SP1 x64. Apache successfully served my test website and I was also able to load my SVN repository successfully on my web browsers (via plain HTTP and HTTPS).
The problem is when I tried to use my SVN client to retrieve my project from the repository.
The following worked fine in the command line using plain HTTP:
| Code: |
svn list http://my.server.ip/svn/TestProject
|
But the following did not work when using HTTPS:
| Code: |
svn list https://my.server.ip/svn/TestProject
|
The error messages I got were:
| Code: |
svn: E175002: Unable to connect to a repository at URL 'https://my.server.ip/svn/TestProject'
svn: E175002: OPTIONS of 'https://my.server.ip/svn/TestProject': SSL handshake failed: SSL disabled due to library version mismatch (https://my.server.ip)
|
Here's my Apache configuration:
mod_svn:
| Code: |
LoadModule dav_svn_module modules/mod_dav_svn.so
LoadModule authz_svn_module modules/mod_authz_svn.so
<Location "/svn">
DAV svn
SVNListParentPath on
SVNParentPath "E:/svn/repositories"
AuthType Basic
AuthName "Subversion Repositories"
AuthUserFile "E:/svn/etc/passwd"
AuthzSVNAccessFile "E:/svn/etc/authz"
Require valid-user
Order allow,deny
Allow from all
SetOutputFilter DEFLATE
SetInputFilter DEFLATE
</Location>
|
mod_ssl:
| Code: |
# This is mostly the default configuration that came with the Apache binary
Listen my.server.ip:443
SSLCipherSuite HIGH:MEDIUM:!aNULL:!MD5
SSLPassPhraseDialog builtin
SSLSessionCache "shmcb:c:/apache/logs/ssl_scache(512000)"
SSLSessionCacheTimeout 300
<VirtualHost _default_:443>
DocumentRoot "c:/apache/htdocs"
ServerName localhost:443
ServerAdmin admin@example.com
ErrorLog "c:/apache/logs/error.log"
TransferLog "c:/apache/logs/access.log"
SSLEngine on
SSLCertificateFile "c:/apache/certs/self_signed.crt"
SSLCertificateKeyFile "c:/apache/certs/self_signed.key"
<FilesMatch "\.(cgi|shtml|phtml|php)$">
SSLOptions +StdEnvVars
</FilesMatch>
<Directory "c:/apache/cgi-bin">
SSLOptions +StdEnvVars
</Directory>
BrowserMatch "MSIE [2-5]" \
nokeepalive ssl-unclean-shutdown \
downgrade-1.0 force-response-1.0
CustomLog "c:/apache/logs/ssl_request.log" \
"%t %h %{SSL_PROTOCOL}x %{SSL_CIPHER}x \"%r\" %b"
# My additions...
# Rewrite Rules for HTTPS
RewriteEngine On
ProxyVia Block
ProxyPreserveHost On
Include conf.d/rewriterules_common.inc
</VirtualHost>
|
And here are the loaded modules from httpd.conf:
| Code: |
ServerRoot "c:/apache"
Listen my.server.ip:80
# ...
LoadModule access_compat_module modules/mod_access_compat.so
LoadModule actions_module modules/mod_actions.so
LoadModule alias_module modules/mod_alias.so
LoadModule allowmethods_module modules/mod_allowmethods.so
LoadModule asis_module modules/mod_asis.so
LoadModule auth_basic_module modules/mod_auth_basic.so
LoadModule authn_core_module modules/mod_authn_core.so
LoadModule authn_file_module modules/mod_authn_file.so
LoadModule authz_core_module modules/mod_authz_core.so
LoadModule authz_groupfile_module modules/mod_authz_groupfile.so
LoadModule authz_host_module modules/mod_authz_host.so
LoadModule authz_user_module modules/mod_authz_user.so
LoadModule autoindex_module modules/mod_autoindex.so
LoadModule cgi_module modules/mod_cgi.so
LoadModule dav_module modules/mod_dav.so
LoadModule dav_fs_module modules/mod_dav_fs.so
LoadModule deflate_module modules/mod_deflate.so
LoadModule dir_module modules/mod_dir.so
LoadModule env_module modules/mod_env.so
LoadModule include_module modules/mod_include.so
LoadModule isapi_module modules/mod_isapi.so
LoadModule log_config_module modules/mod_log_config.so
LoadModule mime_module modules/mod_mime.so
LoadModule negotiation_module modules/mod_negotiation.so
LoadModule proxy_module modules/mod_proxy.so
LoadModule proxy_http_module modules/mod_proxy_http.so
LoadModule rewrite_module modules/mod_rewrite.so
LoadModule setenvif_module modules/mod_setenvif.so
LoadModule socache_shmcb_module modules/mod_socache_shmcb.so
LoadModule ssl_module modules/mod_ssl.so
# ...
|
I also tested this using httpd-2.4.3-win32-ssl_0.9.8-VC9. Same result.
I Googled for the possible cause of the error and the results mostly said that it's a problem with libneon compiled against an older version of OpenSSL. I couldn't find a solution to the problem, however.
Please help me, thanks very much. |
|
| Back to top |
|
Steffen
Moderator
Joined: 15 Oct 2005
Posts: 3092
Location: Hilversum, NL, EU
|
| Posted: Wed 07 Nov '12 14:13 Post subject: |
|
|
| Looks like your post is answered at AH. |
|
| Back to top |
|
James Blond
Moderator
Joined: 19 Jan 2006
Posts: 7371
Location: Germany, Next to Hamburg
|
| Posted: Wed 07 Nov '12 23:49 Post subject: |
|
|
| I upgraded the binaries to the OpenSSL Version 2.4.3 is build against. You can find it on the download page of Apache Haus |
|
| Back to top |
|
|
|
|
|
|
