httpd-bugs mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
Subject [Bug 58007] 400 Bad Request with fully qualified domain name over HTTPS
Date Mon, 08 Jun 2015 12:30:39 GMT

--- Comment #9 from Stefan Eissing <> ---
It cannot be considered a bug when SNI and Host header differ. You cannot
expect all requests on the same connection to have the same Host header either.

Browsers will reuse TLS connections, if hostnames resolve to the same IP
address and wildcard certs or matching alternate names in the certificate to

It is really a client decision to reuse an existing connection for other

And if the server wants the client to use another connection for such a
request, 421 is the proper status code. See Section 9.1.2
Additionally, the Alt-Svc http extensions explicitly
encourages clients to use a connection for "foreign" URLs.

You are receiving this mail because:
You are the assignee for the bug.

To unsubscribe, e-mail:
For additional commands, e-mail:

View raw message