Join GitHub today
GitHub is home to over 40 million developers working together to host and review code, manage projects, and build software together.Sign up
crypto/tls: func (c *Conn) Handshake() returns an error on Windows 7 #30985
What version of Go are you using (
Since it requires the server (in this case, Cloudflare) to change how they use they construct the certificate, unfortunately, this incompatibility with the Windows verifier can only be resolved by them changing how they construct certificates.
In case you reach someone at Cloudflare who can make the change, a 'compatible' certificate would thus be:
They would create an equivalent certificate for each IP address they're serving.
For IPv6, Windows will do a direct string mapping to the CN, so that means it will be somewhat client-dependent as to how they entered the host in the above example. In general, using the compressed form (as that most reflects how users will enter in the address to connect) is likely the best approach.