For documentation purposes,
Test with an IP address should not send SNI per the patch, so it should fail with the certificate verification error:
$ mailutil check {imap.gmail.com:993/imap/ssl}INBOX {cb-in-f108.1e100.net/imap} username:
$ host imap.gmail.com | grep -m1 address gmail-imap.l.google.com has address 64.233.186.108
$ mailutil check {64.233.186.108:993/imap/ssl}INBOX Certificate failure for 64.233.186.108: self signed certificate: /OU=No SNI provided; please fix your client./CN=invalid2.invalid Certificate failure for 64.233.186.108: self signed certificate: /OU=No SNI provided; please fix your client./CN=invalid2.invalid
For documentation purposes,
Test with an IP address should not send SNI per the patch,
so it should fail with the certificate verification error:
$ mailutil check {imap.gmail. com:993/ imap/ssl} INBOX f108.1e100. net/imap} username:
{cb-in-
$ host imap.gmail.com | grep -m1 address l.google. com has address 64.233.186.108
gmail-imap.
$ mailutil check {64.233. 186.108: 993/imap/ ssl}INBOX /CN=invalid2. invalid /CN=invalid2. invalid
Certificate failure for 64.233.186.108: self signed certificate: /OU=No SNI provided; please fix your client.
Certificate failure for 64.233.186.108: self signed certificate: /OU=No SNI provided; please fix your client.