From 208374fc5453f25b12dc2083b0f2bfb997be57c0 Mon Sep 17 00:00:00 2001
From: "Quentin McGaw (desktop)" <quentin.mcgaw@gmail.com>
Date: Sat, 19 Jun 2021 16:34:50 +0000
Subject: [PATCH] Fix: Use name prefix for TLS check for IVPN

---
 internal/provider/ivpn/openvpnconf.go | 5 ++++-
 1 file changed, 4 insertions(+), 1 deletion(-)

diff --git a/internal/provider/ivpn/openvpnconf.go b/internal/provider/ivpn/openvpnconf.go
index b4052a99..f0a1e339 100644
--- a/internal/provider/ivpn/openvpnconf.go
+++ b/internal/provider/ivpn/openvpnconf.go
@@ -2,6 +2,7 @@ package ivpn
 
 import (
 	"strconv"
+	"strings"
 
 	"github.com/qdm12/gluetun/internal/configuration"
 	"github.com/qdm12/gluetun/internal/constants"
@@ -15,6 +16,8 @@ func (i *Ivpn) BuildConf(connection models.OpenVPNConnection,
 		settings.Cipher = constants.AES256cbc
 	}
 
+	namePrefix := strings.Split(connection.Hostname, ".")[0]
+
 	lines = []string{
 		"client",
 		"dev tun",
@@ -43,7 +46,7 @@ func (i *Ivpn) BuildConf(connection models.OpenVPNConnection,
 		"auth-user-pass " + constants.OpenVPNAuthConf,
 		"proto " + connection.Protocol,
 		connection.RemoteLine(),
-		"verify-x509-name " + connection.Hostname, //  + " name-prefix"
+		"verify-x509-name " + namePrefix + " name-prefix",
 	}
 
 	lines = append(lines, utils.CipherLines(settings.Cipher, settings.Version)...)