0
Fork 0
mirror of https://github.com/caddyserver/caddy.git synced 2024-12-23 22:27:38 -05:00
caddy/caddytls
Matt Holt 6e2de19d9f
tls: Fall back to certificate keyed by empty name (fixes #2035) (#2037)
* tls: Fall back to certificate keyed by empty name (fixes #2035)

This should only happen for sites defined with an empty hostname (like
":8080") and which are using self-signed certificates or some other
funky self-managed certificate. But that certificate should arguably
be used for all incoming SNI names.

* tls: Revert to serving any certificate if no match, regardless of SNI

Also fix self-signed certs to include IP addresses in their name
if they are configured to serve an IP address

* Remove tests which are now irrelevant (behavior reverted)

It would be good to revisit this in the future.
2018-03-17 17:03:12 -06:00
..
storagetest Apply Apache license to all .go source files (closes #1865) 2017-09-22 23:56:58 -06:00
certificates.go tls: Fall back to certificate keyed by empty name (fixes #2035) (#2037) 2018-03-17 17:03:12 -06:00
certificates_test.go tls: Fall back to certificate keyed by empty name (fixes #2035) (#2037) 2018-03-17 17:03:12 -06:00
client.go tls: Synchronize renewals between Caddy instances sharing file storage 2018-02-13 13:23:09 -07:00
client_test.go Apply Apache license to all .go source files (closes #1865) 2017-09-22 23:56:58 -06:00
config.go tls: Change default tls minimum version to 1.2 (#2053) 2018-03-10 08:39:07 -07:00
config_test.go Apply Apache license to all .go source files (closes #1865) 2017-09-22 23:56:58 -06:00
crypto.go tls: Fall back to certificate keyed by empty name (fixes #2035) (#2037) 2018-03-17 17:03:12 -06:00
crypto_test.go Apply Apache license to all .go source files (closes #1865) 2017-09-22 23:56:58 -06:00
filestorage.go tls: Synchronize renewals between Caddy instances sharing file storage 2018-02-13 13:23:09 -07:00
filestorage_test.go Apply Apache license to all .go source files (closes #1865) 2017-09-22 23:56:58 -06:00
filestoragesync.go tls: Ensure parent dir exists before creating lock file 2018-02-14 13:32:16 -07:00
handshake.go tls: Fall back to certificate keyed by empty name (fixes #2035) (#2037) 2018-03-17 17:03:12 -06:00
handshake_test.go tls: Fall back to certificate keyed by empty name (fixes #2035) (#2037) 2018-03-17 17:03:12 -06:00
httphandler.go tls: Fix HTTP->HTTPS redirects and HTTP challenge when using custom port 2018-02-16 12:05:34 -07:00
httphandler_test.go tls: Fix HTTP->HTTPS redirects and HTTP challenge when using custom port 2018-02-16 12:05:34 -07:00
maintain.go tls: Avoid nil pointer deref when parsing corrupt OCSP staple files 2018-02-21 10:53:12 -07:00
setup.go tls: Restructure and improve certificate management 2018-02-04 00:58:27 -07:00
setup_test.go tls: Change default tls minimum version to 1.2 (#2053) 2018-03-10 08:39:07 -07:00
storage.go tls: Synchronize renewals between Caddy instances sharing file storage 2018-02-13 13:23:09 -07:00
tls.go tls: Restructure and improve certificate management 2018-02-04 00:58:27 -07:00
tls_test.go caddytls: Extract locker into an interface (#1942) 2017-11-06 09:43:41 -07:00
user.go Apply Apache license to all .go source files (closes #1865) 2017-09-22 23:56:58 -06:00
user_test.go caddytls: Extract locker into an interface (#1942) 2017-11-06 09:43:41 -07:00