Hi,
When testing the 1.6.0 release we encountered a segfault bug on the
server when trying to run the https://www.ssllabs.com/ssltest/ test on
our two sites running with two different SSL certs. The test runs fine
when its run against one of the sites / certificates, but when run
against the second site / cert the server segfaults.
With regular traffic the server seems to run just fine, its only when
running the ssllabs test it happens..
This is my config: (the /data/ssl-certs/ folder contains two different
wildcard certs that both verifies and get A grade in ssllabs test when
running on dev7 version of 1.6.0)
defaults
log global
option httplog
option dontlognull
option log-health-checks
option httpchk GET /
mode http
option http-server-close
timeout connect 7s
timeout client 10s
timeout server 10s
timeout check 5s
resolvers weave-dns
nameserver dns1 172.17.42.1:53
timeout retry 1s
hold valid 10s
frontend http-in
bind *:80
acl acl_domain1 hdr(host) -i domain1.io
use_backend backend_domain1 if acl_domain1
acl acl_domain2 hdr(host) -i domain2.io
use_backend backend_domain2 if acl_domain2
frontend https-in
bind *:443 ssl crt /data/ssl-certs/
reqadd X-Forwarded-Proto:\ https
acl acl_domain1 hdr(host) -i domain1.io
use_backend backend_domain1 if acl_domain1
acl acl_domain2 hdr(host) -i domain2.io
use_backend backend_domain2 if acl_domain2
backend backend_domain1
server domain1-server domain1.weave.local:80 check inter 1000
resolvers weave-dns resolve-prefer ipv4
backend backend_domain2
server domain2-server domain2.weave.local:80 check inter 1000
resolvers weave-dns resolve-prefer ipv4
If any more info is needed please let me know and Ill post it :)
Best regards
Øyvind Johnsen
System Admin
+47 99242547
+852 67157472
