httpd-bugs mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From bugzi...@apache.org
Subject DO NOT REPLY [Bug 52631] SSL / SNI accesses don't work the first time the vhost is accessed
Date Sat, 18 Feb 2012 02:58:56 GMT
https://issues.apache.org/bugzilla/show_bug.cgi?id=52631

--- Comment #4 from Christoph Anton Mitterer <calestyo@scientia.net> 2012-02-18 02:58:56
UTC ---
Some more on this...

The following is from the server wide error log (not from the vhost's)...

When playing the game (i.e. opening the site in the browser, restarting apache,
reloading it - which gives the wrong certificate then, namely that of the
default vhost)...

...with Chromium:
Sat Feb 18 03:52:27 2012] [info] [client 91.8.39.109] (70014)End of file found:
SSL handshake interrupted by system [Hint: Stop button pressed in browser?!]
[Sat Feb 18 03:52:27 2012] [info] [client 91.8.39.109] Connection closed to
child 132 with abortive shutdown (server b.http.srv.scientia.net:443)
[Sat Feb 18 03:52:27 2012] [info] [client 91.8.39.109] (70014)End of file
found: SSL handshake interrupted by system [Hint: Stop button pressed in
browser?!]
[Sat Feb 18 03:52:27 2012] [info] [client 91.8.39.109] Connection closed to
child 64 with abortive shutdown (server b.http.srv.scientia.net:443)
[Sat Feb 18 03:52:27 2012] [info] [client 91.8.39.109] (70014)End of file
found: SSL handshake interrupted by system [Hint: Stop button pressed in
browser?!]
[Sat Feb 18 03:52:27 2012] [info] [client 91.8.39.109] Connection closed to
child 21 with abortive shutdown (server b.http.srv.scientia.net:443)
[Sat Feb 18 03:52:27 2012] [info] [client 91.8.39.109] (70014)End of file
found: SSL handshake interrupted by system [Hint: Stop button pressed in
browser?!]
[Sat Feb 18 03:52:27 2012] [info] [client 91.8.39.109] Connection closed to
child 133 with abortive shutdown (server b.http.srv.scientia.net:443)
[Sat Feb 18 03:52:27 2012] [info] [client 91.8.39.109] (70014)End of file
found: SSL handshake interrupted by system [Hint: Stop button pressed in
browser?!]
[Sat Feb 18 03:52:27 2012] [info] [client 91.8.39.109] Connection closed to
child 65 with abortive shutdown (server b.http.srv.scientia.net:443)
[Sat Feb 18 03:52:27 2012] [info] [client 91.8.39.109] (70014)End of file
found: SSL handshake interrupted by system [Hint: Stop button pressed in
browser?!]
[Sat Feb 18 03:52:27 2012] [info] [client 91.8.39.109] Connection closed to
child 12 with abortive shutdown (server b.http.srv.scientia.net:443)

(of course I did not press a stop button)



With Firefox:
[Sat Feb 18 03:53:59 2012] [info] [client 91.8.39.109] Connection to child 132
established (server b.http.srv.scientia.net:443)
[Sat Feb 18 03:53:59 2012] [info] Seeding PRNG with 1312 bytes of entropy
[Sat Feb 18 03:53:59 2012] [info] [client 91.8.39.109] SSL library error 1 in
handshake (server b.http.srv.scientia.net:443)
[Sat Feb 18 03:53:59 2012] [info] SSL Library Error: 336151570
error:14094412:SSL routines:SSL3_READ_BYTES:sslv3 alert bad certificate Subject
CN in certificate not server name or identical to CA!?
[Sat Feb 18 03:53:59 2012] [info] [client 91.8.39.109] Connection closed to
child 132 with abortive shutdown (server b.http.srv.scientia.net:443)


The vhost's error log shows basically just those messages:
[Sat Feb 18 03:53:37 2012] [info] Configuring server for SSL protocol
[Sat Feb 18 03:53:37 2012] [info] RSA server certificate enables Server Gated
Cryptography (SGC)
[Sat Feb 18 03:53:42 2012] [info] Initial (No.1) HTTPS request received for
child 132 (server alpa-hydraulik-verladetechnik.de:443)
[Sat Feb 18 03:53:42 2012] [info] Subsequent (No.2) HTTPS request received for
child 132 (server alpa-hydraulik-verladetechnik.de:443)
[Sat Feb 18 03:53:42 2012] [info] Initial (No.1) HTTPS request received for
child 64 (server alpa-hydraulik-verladetechnik.de:443)
[Sat Feb 18 03:53:42 2012] [info] Initial (No.1) HTTPS request received for
child 21 (server alpa-hydraulik-verladetechnik.de:443)
[Sat Feb 18 03:53:42 2012] [info] Initial (No.1) HTTPS request received for
child 133 (server alpa-hydraulik-verladetechnik.de:443)
[Sat Feb 18 03:53:42 2012] [info] Initial (No.1) HTTPS request received for
child 65 (server alpa-hydraulik-verladetechnik.de:443)
[Sat Feb 18 03:53:42 2012] [info] Subsequent (No.2) HTTPS request received for
child 65 (server alpa-hydraulik-verladetechnik.de:443)
[Sat Feb 18 03:53:42 2012] [info] Subsequent (No.3) HTTPS request received for
child 132 (server alpa-hydraulik-verladetechnik.de:443)
[Sat Feb 18 03:53:42 2012] [info] Subsequent (No.2) HTTPS request received for
child 133 (server alpa-hydraulik-verladetechnik.de:443)
[Sat Feb 18 03:53:42 2012] [info] Subsequent (No.2) HTTPS request received for
child 64 (server alpa-hydraulik-verladetechnik.de:443)
[Sat Feb 18 03:53:55 2012] [info] Loading certificate & private key of
SSL-aware server
[Sat Feb 18 03:53:55 2012] [info] Configuring server for SSL protocol
[Sat Feb 18 03:53:55 2012] [info] RSA server certificate enables Server Gated
Cryptography (SGC)
[Sat Feb 18 03:53:55 2012] [info] Loading certificate & private key of
SSL-aware server
[Sat Feb 18 03:53:55 2012] [info] Configuring server for SSL protocol
[Sat Feb 18 03:53:55 2012] [info] RSA server certificate enables Server Gated
Cryptography (SGC)

-- 
Configure bugmail: https://issues.apache.org/bugzilla/userprefs.cgi?tab=email
------- You are receiving this mail because: -------
You are the assignee for the bug.

---------------------------------------------------------------------
To unsubscribe, e-mail: bugs-unsubscribe@httpd.apache.org
For additional commands, e-mail: bugs-help@httpd.apache.org


Mime
View raw message