Overview
Request 901155 accepted
- Update to version 0.10.5
+ Fix SNI check when custom root-CA used on Apple devices.
* Validate hostname on Mac when custom root-CA is used. (#396)
- from version 0.10.4
+ Revert Windows CRL checks on root CA override
* On Windows only, reverts the cached CRL check when validating a server
certificate chain using a root CA override. This check was added as part
of a larger change performing SNI validation with a root CA override (#385).
The SNI check remains in place. The CRL check was breaking tls connections
for multiple customers and appears to be subject to properties of the host
beyond the CRT's control.
- from version 0.10.3
+ Inconsistent trust store override behavior logged
* Added warning statement when trust store override is used (#394)
Request History
glaubitz created request
- Update to version 0.10.5
+ Fix SNI check when custom root-CA used on Apple devices.
* Validate hostname on Mac when custom root-CA is used. (#396)
- from version 0.10.4
+ Revert Windows CRL checks on root CA override
* On Windows only, reverts the cached CRL check when validating a server
certificate chain using a root CA override. This check was added as part
of a larger change performing SNI validation with a root CA override (#385).
The SNI check remains in place. The CRL check was breaking tls connections
for multiple customers and appears to be subject to properties of the host
beyond the CRT's control.
- from version 0.10.3
+ Inconsistent trust store override behavior logged
* Added warning statement when trust store override is used (#394)
dirkmueller accepted request
