Login with client cert times out
Affects | Status | Importance | Assigned to | Milestone | |
---|---|---|---|---|---|
apache2 (Ubuntu) |
Fix Released
|
High
|
Dirk Leopold Feiler | ||
Bionic |
Confirmed
|
Undecided
|
Unassigned | ||
Cosmic |
Confirmed
|
Undecided
|
Unassigned | ||
Disco |
Fix Released
|
High
|
Dirk Leopold Feiler |
Bug Description
Appartently due to the inclusion of OpenSSL 1.1.1 a login with a client certificate times out.
This is propably fixed in Apache 2.4.37 (already available in sid and buster):
*) mod_ssl: Fix crash during SSL renegotiation with OptRenegotiate set,
when client certificates are available from the original handshake
but were originally not verified and should get verified now.
This is a regression in 2.4.36 (unreleased). [Ruediger Pluem]
*) mod_ssl: Correctly merge configurations that have client certificates set
by SSLProxyMachine
*) ab: Add client certificate support. [Graham Leggett]
*) mod_ssl: Add support for OpenSSL 1.1.1 and TLSv1.3. TLSv1.3 has
behavioural changes compared to v1.2 and earlier; client and
configuration changes should be expected. SSLCipherSuite is
enhanced for TLSv1.3 ciphers, but applies at vhost level only.
[Stefan Eissing, Yann Ylavic, Ruediger Pluem, Joe Orton]
Changed in apache2 (Ubuntu): | |
status: | New → Confirmed |
assignee: | nobody → Dirk Leopold Feiler (dlfworldde) |
Changed in apache2 (Ubuntu): | |
importance: | Undecided → High |
Do you have logs of this failure? I wonder if https:/ /bugs.launchpad .net/ubuntu/ +source/ apache2/ +bug/1802630 is the same issue