Project

General

Profile

Actions

Bug #10467

closed

net/http reconnects without SNI

Added by dissolve (Ben Roberts) about 10 years ago. Updated almost 10 years ago.

Status:
Closed
Target version:
ruby -v:
ruby 2.1.2p95 (2014-05-08 revision 45877) [x86_64-linux] AND ruby 2.2.0preview1 (2014-09-17 trunk 47616) [x86_64-linux]
[ruby-core:66050]

Description

When using net/http and reusing a connection after a 5 minute timeout, the reconnection fails on Servers using SNI that do not return the same ssl key when using a non-sni connection.

I used wireshark to confirm that the second attempt to connect is returning the incorrect SSL certificate (the certificate the server returns without the hostname set)

Attaching a test script to easily reproduce the error.


Files

test.rb (1019 Bytes) test.rb dissolve (Ben Roberts), 11/02/2014 03:44 PM
Actions

Also available in: Atom PDF

Like0
Like0Like0