1 2Known problems/bugs in neon -*- text -*- 3--------------------------- 4 5* several reports of issues with long-lived sessions causing problems 6 with GSSAPI auth using mod_auth_kerb. May be a server problem, but 7 needs further investigation to be sure. 8 9* 2818 requires that a on rejection of the SSL server cert, a "bad certificate" 10 message should be sent - this is not being done currently (and can probably 11 only be done with OpenSSL by actually doing cert verification in the verify 12 callback) 13 14* ne_lock_discover does not handle multiple (shared) locks on 15 a single resource. 16 17* SSL session caching issues; only cache for clean shutdowns, and 18 only cache on shutdown, since the SSL_SESSION may change during 19 an ne_session? 20 21* perhaps allow a per-Server-header hack for "Darwin Streaming Server 224.0" which doesn't terminate the response headers: 23http://bugzilla.gnome.org/show_bug.cgi?id=366331 24 25HTTP/1.1 200 OK 26Server: Darwin Streaming Server 4.0 27Content-Type: audio/mpeg 28Cache-Control: no-cache 29Pragma: no-cache 30Connection: close 31W8����s0�� 32 33* for a server with multiple A addresses, a successful connect() will 34 "pin" that address for future attempts to connect. If subsequently 35 a connect() fails, neon should at least iterate through the entire 36 address list and at best should do the DNS lookup again. 37 38* should 207 code strclean the error string from the response body? 39 40* load_client_cert fails with: 41 42 load_client_cert: (did not fail to load clicert without pkey) 43 44 on RHEL4 openssl. 45 46* --with-ca-bundle only allows trusting a PEM bundle; support 47 by directory as well 48