Bug 55320

Summary: Plain-text request is sent to WSS URL (which should be over SSL) in mod_proxy_wstunnel
Product: Apache httpd-2 Reporter: Alex Liu <alex.leo.ca>
Component: mod_proxyAssignee: Apache HTTPD Bugs Mailing List <bugs>
Status: RESOLVED FIXED    
Severity: major CC: alex.leo.ca, andre.wendel, antonsh, schulz
Priority: P2 Keywords: FixedInTrunk, PatchAvailable
Version: 2.4.6   
Target Milestone: ---   
Hardware: All   
OS: All   
Attachments: Patch for mod_proxy_wstunnel.c

Description Alex Liu 2013-07-29 03:08:36 UTC 
When I configure ws_proxy_wstunnel module with wss:// URL the request is actually sent in plaintext which gets rejected by backend server due to SSL handshake failure.

Suggested correction,
314a315
>     int is_ssl = 0;
320a322
>         is_ssl = 1;
344c346
<     backend->is_ssl = 0;
---
>     backend->is_ssl = is_ssl;

Thanks,

Alex
Comment 1 Jason Hoos 2013-11-11 22:01:36 UTC 
Created attachment 31035 [details]
Patch for mod_proxy_wstunnel.c

I ran into this issue today.  To assist others, I'm attaching a patch file with Alex's fix.
Comment 2 Eric Covener 2014-04-13 17:01:33 UTC 
Thanks for the report, equivalent patch seems to be applied in trunk and 2.4.x.
Comment 3 Yann Ylavic 2014-05-14 14:38:38 UTC 
*** Bug 56515 has been marked as a duplicate of this bug. ***
Comment 4 Yann Ylavic 2014-05-14 14:41:46 UTC 
This does not seem to be fixed (Bug 56515), at least I can't find the corresponding code. Eric?
Comment 5 Eric Covener 2014-05-14 15:14:15 UTC 
Looking now, I must have misread
Comment 6 Yann Ylavic 2014-05-16 22:04:16 UTC 
Commited in trunk with r1594625.
Proposed for backport in 2.4.x.
Comment 7 Yann Ylavic 2014-06-06 06:32:14 UTC 
Backported in upcoming 2.4.10.
Comment 8 Christophe JAILLET 2014-08-18 07:41:02 UTC 
Fixed and released in 2.4.10