Bug #10613 ยป optional-sni.patch
lib/net/http.rb | ||
---|---|---|
# Sets the maximum depth for the certificate chain verification.
|
||
attr_accessor :verify_depth
|
||
# Disable TLS SNI. Enabled by default, and only if TLS extensions are available.
|
||
attr_accessor :disable_sni
|
||
# Sets the flags for server the certification verification at beginning of
|
||
# SSL/TLS session.
|
||
#
|
||
... | ... | |
end
|
||
s.session = @ssl_session if @ssl_session
|
||
# Server Name Indication (SNI) RFC 3546
|
||
s.hostname = @address if s.respond_to? :hostname=
|
||
unless @disable_sni
|
||
s.hostname = @address if s.respond_to? :hostname=
|
||
end
|
||
Timeout.timeout(@open_timeout, Net::OpenTimeout) { s.connect }
|
||
if @ssl_context.verify_mode != OpenSSL::SSL::VERIFY_NONE
|
||
s.post_connection_check(@address)
|