Problem with Server Name Indication (SNI)
Affects | Status | Importance | Assigned to | Milestone | |
---|---|---|---|---|---|
lighttpd (Ubuntu) |
Invalid
|
Undecided
|
Unassigned |
Bug Description
According to http://
$HTTP["host"] =~ "^example1\.org$" {
ssl.pemfile = "/etc/lighttpd/
server.
server.
}
$HTTP["host"] =~ "^example2\.org$" {
ssl.pemfile = "/etc/lighttpd/
server.
}
After doing sudo service lighttpd force-reload I can access, for example, https:/
So, the problem is that SNI implementation is broken. Instead of picking pem file configured per each virtual host, lighttpd picks pem file for first accessed virtual host and uses it for every other virtual host.
ProblemType: Bug
DistroRelease: Ubuntu 10.04
Package: lighttpd 1.4.26-1.1ubuntu3.1
ProcVersionSign
Uname: Linux 2.6.32-55-server x86_64
Architecture: amd64
Date: Sun Jan 26 16:07:17 2014
InstallationMedia: Ubuntu-Server 10.04.2 LTS "Lucid Lynx" - Release amd64 (20110211.1)
ProcEnviron:
PATH=(custom, no user)
LANG=en_US.UTF-8
SHELL=/bin/bash
SourcePackage: lighttpd
description: | updated |
Looks like it's related to https:/ /bugs.launchpad .net/ubuntu/ +source/ lighttpd/ +bug/627789