[gnutls-devel] GnuTLS | Missing Subject Alternative Name Type - registeredID (#905)
Development of GNU's TLS library
gnutls-devel at lists.gnutls.org
Sat Jan 11 22:14:56 CET 2020
Markus Weber commented:
an easier Reproduction is via direct wget:
>From Debian 9.11 Elasticsearch Server
```
wget https://localhost:9200/
--2020-01-11 21:57:48-- https://localhost:9200/
Resolving localhost (localhost)... 127.0.0.1
Connecting to localhost (localhost)|127.0.0.1|:9200... connected.
The certificate's owner does not match hostname ‘localhost’
```
And here from Debian 10.2 Elasticsearch Server
```
wget https://localhost:9200/
--2020-01-11 21:57:24-- https://localhost:9200/
Resolving localhost (localhost)... 127.0.0.1
Connecting to localhost (localhost)|127.0.0.1|:9200... connected.
GnuTLS: Unknown Subject Alternative name in X.509 certificate.
Unable to establish SSL connection.
```
The Certificate shows this Field:
X509v3 Subject Alternative Name:
Registered ID:1.2.3.4.5.5, DNS:ecs1.me.com, IP Address:172.16.0.10
--
Reply to this email directly or view it on GitLab: https://gitlab.com/gnutls/gnutls/issues/905#note_270145958
You're receiving this email because of your account on gitlab.com.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <https://lists.gnupg.org/pipermail/gnutls-devel/attachments/20200111/e6286d94/attachment.html>
More information about the Gnutls-devel
mailing list