maskit commented on issue #12214: URL: https://github.com/apache/trafficserver/issues/12214#issuecomment-2836032587
It seems like to be caused by #117458. My theory is that the connection pool cannot find a connection for server name X, because none of the connections in the pool doesn't say they are for server name X. Before the change, we used `NetVConnectin::get_sni_servername()` that internally calls `SSL_get_servername()`, and that OpenSSL function works for both incoming and outoging connections. But now we use `TLSSNISupport::get_sni_server_name` and that only works for incoming connections because `_sni_server_name` seems to be only set on incoming connections. We probably need to let TLSSNISupport know the server name when we call `SSL_set_tlsext_host_name` for an outgoing connection. -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: [email protected] For queries about this service, please contact Infrastructure at: [email protected]
