[CDRIVER-2378] Is SNI enabled with Secure Transport if allow_invalid_hostname is true? Created: 17/Nov/17  Updated: 28/Mar/23

Status: Backlog
Project: C Driver
Component/s: tls
Affects Version/s: None
Fix Version/s: None

Type: Task Priority: Minor - P4
Reporter: A. Jesse Jiryu Davis Assignee: Unassigned
Resolution: Unresolved Votes: 0
Labels: rb-track
Remaining Estimate: Not Specified
Time Spent: Not Specified
Original Estimate: Not Specified

Epic Link: CDRIVER-4575
Quarter: FY24Q3

 Description   

In mongoc-stream-tls-secure-transport.c:

   if (!opt->allow_invalid_hostname) {
      SSLSetPeerDomainName (secure_transport->ssl_ctx_ref, host, strlen (host));
   }

Does SNI still work then? Or have we made the same mistake as Curl and Chromium?:

https://github.com/curl/curl/issues/998
https://langui.sh/2010/02/24/sni-support-in-chromium-os-x/


Generated at Wed Feb 07 21:15:02 UTC 2024 using Jira 9.7.1#970001-sha1:2222b88b221c4928ef0de3161136cc90c8356a66.