You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
x509 certificate verification currently fails for requests that specifies a port, unless the common name pattern in the certificate has the same port specified.
I think this is too strict. If the pattern doesn't have a port, I think the verification should pass for all requests to that host, regardless of port.
X.509 certificates should only contain hostnames and VerifyHostname takes a hostname. One can use SplitHostPort to preprocess strings that may contain a port number.
x509 certificate verification currently fails for requests that specifies a port, unless the common name pattern in the certificate has the same port specified.
I think this is too strict. If the pattern doesn't have a port, I think the verification should pass for all requests to that host, regardless of port.
Relevant code: https://github.com/golang/go/blob/master/src/crypto/x509/verify.go#L414
The text was updated successfully, but these errors were encountered: