Skip to content

send SAN in certifcate for validation TLS-ALPN-01 for IP address#26

Open
orangepizza wants to merge 1 commit intoletsencrypt:mainfrom
orangepizza:tlsalpnip
Open

send SAN in certifcate for validation TLS-ALPN-01 for IP address#26
orangepizza wants to merge 1 commit intoletsencrypt:mainfrom
orangepizza:tlsalpnip

Conversation

@orangepizza
Copy link

@orangepizza orangepizza commented May 8, 2025

when tls-alpn-01 challenge used to validate ip address validator send rDNS address in SNI, but client suppose to include IPaddress in SAN in certificate returned.

PS. go 1.13 looks really old, didn't touched though.

@orangepizza
send SAN in certifcate for validation TLS-ALPN-01 for IP address
c9b7dfe 
when tls-alpn-01 challenge used to validate ip address validator send rDNS address in SNI, but client suppose to include IPaddress in SAN in certificate returned.
orangepizza
orangepizza commented May 8, 2025
View reviewed changes
Copy link
Author

@orangepizza orangepizza left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

in this setting user supposed to add challange on rDNS domain to get a validation challenge to work: would it better if this catch ip-like add/del chall request and redirect them?

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

No reviews

Assignees

No one assigned

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

1 participant

@orangepizza