25615 – Validator doesn't send TLS SNI

This is an archived snapshot of W3C's public bugzilla bug tracker, decommissioned in April 2019. Please see the home page for more details.

Bug 25615 - Validator doesn't send TLS SNI

Summary: Validator doesn't send TLS SNI

Status:	NEW

Alias:	None

Product:	Validator
Classification:	Unclassified
Component:	check (show other bugs)
Version:	HEAD
Hardware:	All All

Importance:	P2 normal
Target Milestone:	---
Assignee:	This bug has no owner yet - up for the taking
QA Contact:	qa-dev tracking

URL:
Whiteboard:
Keywords:

Depends on:
Blocks:

Reported:	2014-05-08 21:44 UTC by Mark Nottingham
Modified:	2014-05-08 21:44 UTC (History)
CC List:	0 users

See Also:

Attachments

Description Mark Nottingham 2014-05-08 21:44:59 UTC

The validator appears not to be sending TLS SNI:
  http://en.wikipedia.org/wiki/Server_Name_Indication

E.g.:
  http://validator.w3.org/check?uri=https%3A%2F%2Fwww.mnot.net%2F;No200=1

AFAICT it's using LWP:UserAgent, which uses IO::Socket::SSL, which says:
  http://search.cpan.org/~sullr/IO-Socket-SSL-1.983/lib/IO/Socket/SSL.pm#SNI_Support

.. so you *should* just have to upgrade OpenSSL to fix this (perhaps rebuilding Perl afterwards).