История изменений
Исправление Bass, (текущая версия) :
Да, согласен, спасибо.
При отключении SNI на клиентской стороне всё работает:
$ openssl s_client -noservername -connect www.linkedin.com:443
CONNECTED(00000003)
depth=2 C = US, O = DigiCert Inc, OU = www.digicert.com, CN = DigiCert Global Ro ot CA
verify return:1
depth=1 C = US, O = DigiCert Inc, CN = DigiCert SHA2 Secure Server CA
verify return:1
depth=0 C = US, ST = California, L = Sunnyvale, O = LinkedIn Corporation, CN = w ww.linkedin.com
verify return:1
---
Certificate chain
0 s:C = US, ST = California, L = Sunnyvale, O = LinkedIn Corporation, CN = www. linkedin.com
i:C = US, O = DigiCert Inc, CN = DigiCert SHA2 Secure Server CA
1 s:C = US, O = DigiCert Inc, CN = DigiCert SHA2 Secure Server CA
i:C = US, O = DigiCert Inc, OU = www.digicert.com, CN = DigiCert Global Root CA
---
Server certificate
-----BEGIN CERTIFICATE-----
MIIIYjCCB0qgAwIBAgIQB3I5p15rVMjJMEDrSTLVRzANBgkqhkiG9w0BAQsFADBN
У меня появилась одна причина (ESNI) снова начать пользоваться Mozilla Firefox.
Исходная версия Bass, :
Да, согласен, спасибо.
При отключении SNI на клиентской стороне всё работает:
$ openssl s_client -noservername -connect www.linkedin.com:443
CONNECTED(00000003)
depth=2 C = US, O = DigiCert Inc, OU = www.digicert.com, CN = DigiCert Global Ro ot CA
verify return:1
depth=1 C = US, O = DigiCert Inc, CN = DigiCert SHA2 Secure Server CA
verify return:1
depth=0 C = US, ST = California, L = Sunnyvale, O = LinkedIn Corporation, CN = w ww.linkedin.com
verify return:1
---
Certificate chain
0 s:C = US, ST = California, L = Sunnyvale, O = LinkedIn Corporation, CN = www. linkedin.com
i:C = US, O = DigiCert Inc, CN = DigiCert SHA2 Secure Server CA
1 s:C = US, O = DigiCert Inc, CN = DigiCert SHA2 Secure Server CA
i:C = US, O = DigiCert Inc, OU = www.digicert.com, CN = DigiCert Global Root CA
---
Server certificate
-----BEGIN CERTIFICATE-----
MIIIYjCCB0qgAwIBAgIQB3I5p15rVMjJMEDrSTLVRzANBgkqhkiG9w0BAQsFADBN