Actions
Bug #10467
closednet/http reconnects without SNI
ruby -v:
ruby 2.1.2p95 (2014-05-08 revision 45877) [x86_64-linux] AND ruby 2.2.0preview1 (2014-09-17 trunk 47616) [x86_64-linux]
Backport:
Description
When using net/http and reusing a connection after a 5 minute timeout, the reconnection fails on Servers using SNI that do not return the same ssl key when using a non-sni connection.
I used wireshark to confirm that the second attempt to connect is returning the incorrect SSL certificate (the certificate the server returns without the hostname set)
Attaching a test script to easily reproduce the error.
Files
Actions
Like0
Like0Like0