Skip to content

Why do you perform domain validation on IP addresses? #15

@d-e-s-o

Description

@d-e-s-o

See above. When I try to connect to an IP address I get a complaint about an invalid domain. Other TLS crates seem fine with an IP to connect to. Why is this check in place for IP addresses?

Activity

Demi-Marie

Demi-Marie commented on Feb 25, 2020

@Demi-Marie
Contributor

This is a missing feature in WebPKI.

sachanganesh

sachanganesh commented on Aug 4, 2020

@sachanganesh

Just to clarify, is there any work-around to the domain validation? I want to test against a local tls server, but I'm encountering the "invalid domain" error with little additional context.

If someone could provide a solution to the error, a work-around, or resources for further reading that would be greatly appreciated.

Thanks in advance!

Demi-Marie

Demi-Marie commented on Aug 5, 2020

@Demi-Marie
Contributor

The only workarounds are:

  • Implement it oneself with a custom certificate verifier.
  • Implement it oneself and get it upstreamed to WebPKI.
  • Pay Brian Smith to add support for it to WebPKI.
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Metadata

Metadata

Assignees

No one assigned

    Labels

    No labels
    No labels

    Type

    No type

    Projects

    No projects

    Milestone

    No milestone

    Relationships

    None yet

      Development

      No branches or pull requests

        Participants

        @sachanganesh@d-e-s-o@Demi-Marie

        Issue actions

          Why do you perform domain validation on IP addresses? · Issue #15 · async-rs/async-tls