SNI names are not allowed to include IP addresses

XMLWordPrintableJSON

    • Type: Bug
    • Resolution: Fixed
    • Priority: Major - P3
    • 4.3.1
    • Affects Version/s: None
    • Component/s: None
    • Minor Change
    • ALL
    • Security 2019-07-29, Security 2019-08-12, Security 2019-08-26, Security 2019-09-09
    • 0
    • None
    • 3
    • None
    • None
    • None
    • None
    • None
    • None

      Per RFC 6066:

      3. Server Name Indication
      ...
      Literal IPv4 and IPv6 addresses are not permitted in "HostName".

      MongoD currently sends 127.0.0.1 instead of localhost in local testing. Discovered when using the encrypted storage engine to talk to a kmip server using rustls.

            Assignee:
            Adam Cooper (Inactive)
            Reporter:
            Mark Benvenuto
            Votes:
            0 Vote for this issue
            Watchers:
            3 Start watching this issue

              Created:
              Updated:
              Resolved: