[reSIProcate] Suggestion regarding Client support for TLS SNI extension.
Udit Raikwar
udit043.ur at gmail.com
Sat Jul 30 15:42:29 CDT 2016
Hello,
I have created a Pull request[1] in which I am enabling client support for
TLS SNI extension.
Server Name Indication (SNI) is an extension to the TLS computer networking
protocol by which a client indicates which hostname it is attempting to
connect to at the start of the handshaking process. It allows multiple
hostnames to be served over HTTPS from the same IP address. (Please read
[2] or [3] for more information)
At present in resiprocate, SNI extension is not supported, to enable sni
support in client side I have added some code in
resip/stack/ssl/TlsConnection.cxx file. I have checked the server name in
'Client Hello' using wireshark.
Client Hello without SNI supported: https://i.imgsafe.org/54bf8257b4.png
Client Hello with SNI supported: https://i.imgsafe.org/54c253a037.png
Does anyone have any suggestions on supporting tls sni extension.
[1]= https://github.com/resiprocate/resiprocate/pull/54
[2]=
https://devcentral.f5.com/articles/ssl-profiles-part-7-server-name-indication
[3]= https://en.wikipedia.org/wiki/Server_Name_Indication
Thanks
Udit
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://list.resiprocate.org/pipermail/resiprocate-devel/attachments/20160731/c94d8dd4/attachment.htm>
More information about the resiprocate-devel
mailing list