Ruby Issue Tracking System

12/08/2015

01:20 PM Ruby Bug #10398: Server Name Indication support broken when reusing a (dead) session

#11401 solves this issue. mkarnebeek (Michiel Karnebeek)

07/28/2015

11:44 AM Ruby Bug #11401 (Closed): Net::HTTP SSL session resumption does not send SNI

See https://github.com/ruby/ruby/pull/964
## Problem
When an initial SSL request is done, Net::HTTP stores the OpenSSL::SSL::Session object in @ssl_session.
When (after the http-keep-alive timeout has expired, or the connection ... mkarnebeek (Michiel Karnebeek)

06/18/2015

09:27 AM Ruby Bug #10533: HTTP reconnection with SNI does not send correct hostname

Root cause seems to be in ossl_ssl.c:
Net::Http calls `s.session=` (C-method `ossl_ssl_set_session`), which calls C-method `ossl_ssl_setup`, which only sets up the ssl client (`ssl`) once due to "`if(!ssl){`". The problem is that the ... mkarnebeek (Michiel Karnebeek)

08:51 AM Ruby Bug #10533: HTTP reconnection with SNI does not send correct hostname

Created https://github.com/ruby/ruby/pull/964 mkarnebeek (Michiel Karnebeek)

08:36 AM Ruby Bug #10533: HTTP reconnection with SNI does not send correct hostname

It looks like i've solved it: Moving `s.hostname = @address` before `s.session = @ssl_session` has solved it on my end.
See the attached patch
mkarnebeek (Michiel Karnebeek)

06/17/2015

01:40 PM Ruby Bug #10533: HTTP reconnection with SNI does not send correct hostname

Following up on my comment a few days ago:
I ran a test in python using https://github.com/nabla-c0d3/sslyze (with OpenSSL 1.0.2a, same version as in Ruby) and introduced a sleep longer than the ssl session TTL at https://github.com/n... mkarnebeek (Michiel Karnebeek)

06/12/2015

09:02 AM Ruby Bug #10533: HTTP reconnection with SNI does not send correct hostname

The patch does not seem to solve the reported issue.
Reconnecting HTTP connections still do not send an SNI.
I'm running ruby 2.2.2p95 (2015-04-13 revision 50295) [x86_64-darwin14] and checked using Wireshark. mkarnebeek (Michiel Karnebeek)