Leif Hedstrom created TS-2031:
---------------------------------
Summary: SSL can pick the wrong certificate
Key: TS-2031
URL: https://issues.apache.org/jira/browse/TS-2031
Project: Traffic Server
Issue Type: Bug
Components: SSL
Reporter: Leif Hedstrom
I have a case, where two IPs have different certificate, but the second
certificate is a wildcard. So, certificate 1) is more specificic (www.example)
whereas the second cert is a *.example.com). My config is e.g.
{code}
dest_ip=1.2.3.4 ssl_cert_name=www.example.com.pem
dest_ip=2.3.4.5 ssl_cert_name=example.com.pem
{code}
The IP for www.example.com is 1.2.3.4, yet, it will present the wrong cert. A
wild guess is that the lookup matches the second cert first, and it fails to
take the IP into consideration?
--
This message is automatically generated by JIRA.
If you think it was sent incorrectly, please contact your JIRA administrators
For more information on JIRA, see: http://www.atlassian.com/software/jira
