From a9f07c6352bce0685923c9a8563fe73e3e14a2ea Mon Sep 17 00:00:00 2001
From: Bjørn Christian Seime <bjorncs@verizonmedia.com>
Date: Fri, 2 Aug 2019 15:23:02 +0200
Subject: Disable hostname verification for the perl utilities

---
 vespaclient/src/perl/lib/Yahoo/Vespa/Http.pm | 1 +
 1 file changed, 1 insertion(+)

diff --git a/vespaclient/src/perl/lib/Yahoo/Vespa/Http.pm b/vespaclient/src/perl/lib/Yahoo/Vespa/Http.pm
index 33d0620466d..f48d25906b4 100644
--- a/vespaclient/src/perl/lib/Yahoo/Vespa/Http.pm
+++ b/vespaclient/src/perl/lib/Yahoo/Vespa/Http.pm
@@ -100,6 +100,7 @@ sub initialize { # ()
     my $tls_enabled = $ENV{'VESPA_TLS_ENABLED'};
     if (defined $tls_enabled and $tls_enabled eq '1') {
         $BROWSER->ssl_opts( SSL_version => 'TLSv12');
+        $BROWSER->ssl_opts( SSL_verifycn_scheme => 'none');
         $BROWSER->ssl_opts( SSL_cipher_list => 'ECDHE-RSA-AES128-GCM-SHA256:ECDHE-RSA-AES256-GCM-SHA384:ECDHE-ECDSA-AES128-GCM-SHA256:ECDHE-ECDSA-AES256-GCM-SHA384:ECDHE-RSA-CHACHA20-POLY1305:ECDHE-ECDSA-CHACHA20-POLY1305:TLS13-AES-128-GCM-SHA256:TLS13-AES-256-GCM-SHA384:TLS13-CHACHA20-POLY1305-SHA256' );
     }
     if (defined $ENV{'VESPA_TLS_CA_CERT'}) {
-- 
cgit v1.2.3