Federation tester doesn't appear to be matching server names correctly with .well-known enabled

matrix-org / matrix-federation-tester

Tester for matrix federation written in golang.

79 stars 17 forks source link

Federation tester doesn't appear to be matching server names correctly with .well-known enabled #21

Closed turt2live closed 5 years ago

turt2live commented 5 years ago

In a setup where example.org is delegated to matrix.example.org:443 via .well-known, the federation tester says that the server names don't match. It appears to be checking that example.org === matrix.example.org, which is wrong because the certificate should be for matrix.example.org and therefore it should be checking that.

turt2live commented 5 years ago

As a test case, travisr.com can be used to see what happens.

It has a .well-known set up to delegate to travisr.temp.t2host.io:443, which causes the federation tester to complain: https://matrix.org/federationtester/api/report?server_name=travisr.com