Finally it turned out NOT to be TLS related. The problem was the HTTP acl matching in the frontend.
I used acl: hdr(host). The mobile client was the only in the whole world which specified the :443 for https: URLs, so I have never noticed earlier, that it can be a problem. changed to hdr_dom(host), and happy now. Regards, Attila