Bug 1330185

Summary: SNI lookup failure should use default virtual host
Product: [Fedora] Fedora Reporter: Rob Crittenden <rcritten>
Component: mod_nssAssignee: Rob Crittenden <rcritten>
Status: CLOSED ERRATA QA Contact: Fedora Extras Quality Assurance <extras-qa>
Severity: unspecified Docs Contact:
Priority: unspecified    
Version: 23CC: mharmsen, rcritten
Target Milestone: ---   
Target Release: ---   
Hardware: Unspecified   
OS: Unspecified   
Whiteboard:
Fixed In Version: mod_nss-1.0.12-4.fc23 Doc Type: Bug Fix
Doc Text:
Story Points: ---
Clone Of: Environment:
Last Closed: 2016-05-04 18:53:58 UTC Type: Bug
Regression: --- Mount Type: ---
Documentation: --- CRM:
Verified Versions: Category: ---
oVirt Team: --- RHEL 7.3 requirements from Atomic Host:
Cloudforms Team: --- Target Upstream Version:

Description Rob Crittenden 2016-04-25 14:47:12 UTC 
Description of problem:

If no nickname / VH match is found a TLS alert is thrown. According to RFC 6066 section 3 this is not recommended (mod_ssl doesn't do this). This was fixed upstream in a8711ee2d0d00d42b748f689c7595d1e519e3d2f

Version-Release number of selected component (if applicable):

mod_nss-1.0.12-3
Comment 1 Fedora Update System 2016-04-25 19:35:38 UTC 
mod_nss-1.0.12-4.fc23 has been submitted as an update to Fedora 23. https://bodhi.fedoraproject.org/updates/FEDORA-2016-c57b73be74
Comment 2 Fedora Update System 2016-04-27 01:21:21 UTC 
mod_nss-1.0.12-4.fc23 has been pushed to the Fedora 23 testing repository. If problems still persist, please make note of it in this bug report.
See https://fedoraproject.org/wiki/QA:Updates_Testing for
instructions on how to install test updates.
You can provide feedback for this update here: https://bodhi.fedoraproject.org/updates/FEDORA-2016-c57b73be74
Comment 3 Fedora Update System 2016-05-04 18:53:56 UTC 
mod_nss-1.0.12-4.fc23 has been pushed to the Fedora 23 stable repository. If problems still persist, please make note of it in this bug report.