RFC 2818 describes two methods to match a domain name against a certificate - using the available names within the subjectAlternativeName extension, or, in the absence of a SAN extension, falling back to the commonName. The fallback to the commonName was deprecated in RFC 2818 (published in 2000), but support still remains in a number of TLS clients, often incorrectly.
Documentation
Specification
Status in Chromium
Removed (tracking bug) in:
- Chrome for desktop release 58
- Chrome for Android release 58
- Chrome for iOS release 58
- Android WebView release 58
Consensus & Standardization
After a feature ships in Chrome, the values listed here are not guaranteed to be up to date.
- Negative
- No signal
- No signal
- No signals
Owner
Last updated on 2020-11-09
Comments
Firefox has removed support in Firefox 48 (meaning "Supports removal")