Delayed responses for cURL SSL PUTs/POSTs (php) (NSS vs OpenSSL)

views:

128

answers:

+1 Q:

Delayed responses for cURL SSL PUTs/POSTs (php) (NSS vs OpenSSL)

I have two Fedora-based apache webservers making the same SSL PUT/POST calls with php/cURL. One works fine, but with the other the call succeeds but takes a VERY long time to return a response (~10 min). (GETs don't seem affected)

The working server's cURL uses OpenSSL for SSL, while the non-working version uses a later version of cURL that uses NSS for SSL

I know nothing about SSL implementations or their effect on cURL. What would cause such a significant delay in SSL PUT/POST responses?

Any suggestions appreciated- Thanks--

I can only guess, but some SSL implementations end up trying to do unnecessary reverse DNS lookups and these can take a long time to time out.

GregS 2010-06-01 22:30:09

Thanks Greg/Robert/Einstein for the suggestions- Sounds like DNS lookups is where I need to start--

Yarin 2010-06-01 23:05:53

Yes, i would bet on a DNS issue along the lines.

Try run a trace route from root and get some connection figures.

Do it on both machines so you can see where there issues is first showing up in the Debug.

RobertPitt 2010-06-01 22:36:07

I don't know the answer. DNS recommendations are always good. Other ideas include MTU discovery, server not providing intermediate certs so the clients may be trying to download missing intermediaries or an attempt to check the CAs recovation list.

Download wireshark and you should be able to get a better idea of the difference in behavior between clients.

Einstein 2010-06-01 22:57:40

ansaurus

tags:

views:

answers:

Delayed responses for cURL SSL PUTs/POSTs (php) (NSS vs OpenSSL)

related questions