Uploaded image for project: 'Camel'
  1. Camel
  2. CAMEL-16069

Camel-HTTP component doesn't resume SSL sessions

    XMLWordPrintableJSON

    Details

    • Type: Improvement
    • Status: Resolved
    • Priority: Minor
    • Resolution: Not A Problem
    • Affects Version/s: 2.25.1
    • Fix Version/s: 3.x
    • Component/s: camel-http
    • Labels:
      None
    • Estimated Complexity:
      Unknown

      Description

      SSL supports SSL session resume.

      This feature saves a lot of time because SSL initialization (time consuming is skipped).

      For details, please see : https://vincent.bernat.ch/en/blog/2011-ssl-session-reuse-rfc5077

      I did a standalone test with Apache HttpClient having same version the one used in Camel 2.25.1 : it works.

      But SSL session resuming fails with Camel.

      Server Hello is rejected by Apache Web server.

      Apache says : 

      AH02255: Changed client verification type will force renegotiation

      And then previous session is invalidated.

      This problem doesn't occur in my standalone tester.

      Resuming SSL sessions would increase drasticaly performance.

       

        Attachments

          Activity

            People

            • Assignee:
              Unassigned
              Reporter:
              floison François Loison
            • Votes:
              0 Vote for this issue
              Watchers:
              1 Start watching this issue

              Dates

              • Created:
                Updated:
                Resolved: