[openssl-dev] SNI/ALPN ordering
Salz, Rich
rsalz at akamai.com
Wed Jun 17 14:40:38 UTC 2015
> My issue is that the proposed ALPN protocols depend on the virtual host the
> client wants to talk to. So, the observed order poses a bit of a problem. The
> code *can* check the server name via SSL_get_servername() and the
> correct name is reported. However this is not how it is supposed to work,
> right?
I can imagine all sorts of things that depend on the SNI value, and not having it be the first does seem like a bug.
More information about the openssl-dev
mailing list