Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

OpenSSL SNI documentation #25

Open
hannesfostie opened this issue Dec 12, 2013 · 3 comments
Open

OpenSSL SNI documentation #25

hannesfostie opened this issue Dec 12, 2013 · 3 comments

Comments

@hannesfostie
Copy link

We had an issue where we had to figure out a way to make the following command work through Ruby's stdlib:

echo | openssl s_client -connect google.com:443 -servername google.com 2>/dev/null | openssl x509 -noout -fingerprint

Note the -servername option

I spent a lot of time looking around, first looking at the servername_cb callback (which in itself is poorly documented if at all), only later realizing there's a hostname attribute on OpenSSL::SSL::SSLContext

In case you're not familiar with the servername option, it's used to get the correct certificate on a domain name where the host uses Server Name Indication or SNI in short.
@zzak
Copy link

zzak commented Dec 12, 2013

@hannesfostie Thanks for the report!

@zzak
Copy link

zzak commented Feb 13, 2014

@hannesfostie Sorry I haven't had time to get to this, would this be something you'd be interested in helping out with?

@hannesfostie
Copy link
Author

@zzak I'm afraid I know far too little about all this to be able to pull that off

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
2 participants
@zzak @hannesfostie