I use pound to allow some legacy IOT devices access a reset API running on apache. I'm using self-signed certs. My config disables TLSv1, requires a client cert for incoming, and connects to apache on 80/http (on localhost). Nothing works after upgrading from 4.11 to 4.13 and syslog shows a bunch of "out of memory" errors.
The call to lognomem() is happening at the add_ssl_headers() call in send_to_backend() and is because add_ssl_headers() returns -1 when the get_line() call fo X509_get_subject_name returns COPY_READ_ERR because BIO_read returns -1.
I suspect the "out of memory" error message is plain wrong but otherwise don't understand why this no longer works for me. I've attached an approximation of my config.
I use pound to allow some legacy IOT devices access a reset API running on apache. I'm using self-signed certs. My config disables TLSv1, requires a client cert for incoming, and connects to apache on 80/http (on localhost). Nothing works after upgrading from 4.11 to 4.13 and syslog shows a bunch of "out of memory" errors.
The call to lognomem() is happening at the add_ssl_headers() call in send_to_backend() and is because add_ssl_headers() returns -1 when the get_line() call fo X509_get_subject_name returns COPY_READ_ERR because BIO_read returns -1.
I suspect the "out of memory" error message is plain wrong but otherwise don't understand why this no longer works for me. I've attached an approximation of my config.
pound.cfg.txt