cURL / Mailing Lists / curl-library / Single Mail

curl-library

Re: [PATCH] support for server name indication (RFC 4366)

From: Yang Tse <yangsita_at_gmail.com>
Date: Thu, 14 Feb 2008 04:21:35 +0100

2008/2/13, Peter Sylvester wrote:

> > Once that a TLS with SNI connection is established, could it be
> > possible to know if the server is actually a virtual host or not ?
> >
> The SNI does not tell anything about virtual host, SNI allows to select
> an appropriate certficate.

Thanks for the answer. I should have read more carefully the rfc.

Now the concern I have is related with the real world interoperability
state with existing servers that might simply close the connection if
they don't understand or properly handle client TLS extensions. This
is a good reason to allow the user to enable or disable at will client
TLS extensions.

Any chart or info available somewhere ?

Does OpenSSL retry a connection with TLS extensions disabled if a
connection attempt with extensions enabled is remotely closed before
handshake is completed ?

-- 
-=[Yang]=-

Received on 2008-02-14

This message: [ Message body ]
Next message: Kevin Lawler: "libcurl static/static-'/MT' in MSVC, paying for binaries/.libs"
Previous message: yi xia: "Re: about the bug of glibc detected free invalid pointer"
In reply to: Peter Sylvester: "Re: [PATCH] support for server name indication (RFC 4366)"
Next in thread: Peter Sylvester: "Re: [PATCH] support for server name indication (RFC 4366)"
Reply: Peter Sylvester: "Re: [PATCH] support for server name indication (RFC 4366)"

Contemporary messages sorted: [ by date ] [ by thread ] [ by subject ] [ by author ] [ by messages with attachments ]