httpd-bugs mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
Subject DO NOT REPLY [Bug 52631] New: SSL / SNI accesses don't work the first time the vhost is accessed
Date Thu, 09 Feb 2012 15:29:04 GMT

             Bug #: 52631
           Summary: SSL / SNI accesses don't work the first time the vhost
                    is accessed
           Product: Apache httpd-2
           Version: 2.2.20
          Platform: All
        OS/Version: All
            Status: NEW
          Severity: major
          Priority: P2
         Component: mod_ssl
    Classification: Unclassified


I've noticed the following problem, which happens at least with Firefox and
Chromium as clients.

I'm using SSL with SNI.

There is a default name based virtual host, with it's own hostname and
corresponding certificate as well as non-default name based vhosts with own
hostname and certs.

SSL client authentication is disabled.

When I have a freshly started apache2 and access the non-default vhost via
SSL/SNI the first time this fails and apache actually takes the default vhost
and also delivers the server cert of that to the client (which is the reason
why it fails - well at least from a SSL point of view).

When I click reload in the browser it works from then on (I'm not sure if it
works really infinitely from then on,.. there might have been cases where it
happened again after some time... so perhaps there is some caching issue?!).

This is reproducible, when restarting apache again,.. it happens again (the
first time).


Configure bugmail:
------- You are receiving this mail because: -------
You are the assignee for the bug.

To unsubscribe, e-mail:
For additional commands, e-mail:

View raw message