Ubuntu
wget package

Add SNI support.

Bug #338242 reported by Adam Buchbinder
58
This bug affects 10 people
Affects Status Importance Assigned to Milestone
wget
Unknown
Unknown
wget (Debian)
Fix Released
Unknown
wget (Ubuntu)
Fix Released
Wishlist
Unassigned

Bug Description

Binary package hint: wget

wget does not support SNI:

$ dpkg -l wget
ii wget 1.11.4-1ubuntu1
$ wget https://sni.velox.ch/
--2009-03-05 09:09:29-- https://sni.velox.ch/
Resolving sni.velox.ch... 62.75.148.60
Connecting to sni.velox.ch|62.75.148.60|:443... connected.
ERROR: certificate common name `alice.sni.velox.ch' doesn't match requested host name `sni.velox.ch'.
To connect to sni.velox.ch insecurely, use `--no-check-certificate'.
Unable to establish SSL connection.
$ wget --no-check-certificate -q -O- https://sni.velox.ch/|grep h2
<h2>TLS SNI Test Site: alice.sni.velox.ch</h2>

This is what should happen:

$ dpkg -l curl
ii curl 7.18.2-1ubuntu4.1
$ curl https://sni.velox.ch/ 2>/dev/null|grep h2
<h2>TLS SNI Test Site: *.sni.velox.ch</h2>
$ curl https://alice.sni.velox.ch/ 2>/dev/null|grep h2
<h2>TLS SNI Test Site: alice.sni.velox.ch</h2>

See bug 223855 for information about curl's SNI support; the patch to implement it there is relatively small.

ProblemType: Bug
Architecture: i386
DistroRelease: Ubuntu 8.10
Package: wget 1.11.4-1ubuntu1
ProcEnviron:
 SHELL=/bin/bash
 PATH=/home/username/bin:/usr/local/sbin:/usr/local/bin:/usr/sbin:/usr/bin:/sbin:/bin:/usr/games
 LANG=en_US.UTF-8
SourcePackage: wget
Uname: Linux 2.6.27-11-generic i686

Tags: apport-bug
Revision history for this message
Adam Buchbinder (adam-buchbinder) wrote :
Bug Watch Updater (bug-watch-updater)
Changed in wget:
status: Unknown → Confirmed
Fail2Ban (failtoban)
Changed in wget:
importance: Unknown → Undecided
status: Unknown → New
status: New → Fix Released
Revision history for this message
Mitch Towner (kermiac) wrote :

@ Fail2Ban please do not change upstream bug tasks as they are used to track the progress of this bug upstream.
Thanks in advance!

Changed in wget:
importance: Undecided → Unknown
status: Fix Released → Unknown
Revision history for this message
Andreas Olsson (andol) wrote :

Marking as Triaged, there being a upstream patch on its way downwards.

Changed in wget (Ubuntu):
status: New → Confirmed
status: Confirmed → Triaged
importance: Undecided → Wishlist
Revision history for this message
Nokir (nokir) wrote :

The watched bugs on Debian and gnu.org are about support for Subject Alternative Name. This bug is about Server Name Indication.

Revision history for this message
Nokir (nokir) wrote :

In fact, I think this is the right upstream bug report: http://savannah.gnu.org/bugs/?func=detailitem&item_id=26786

Bug Watch Updater (bug-watch-updater)
Changed in wget (Debian):
status: Confirmed → Fix Released
Revision history for this message
Matt Johnston (matt-ucc) wrote :

Debian bug 409938 is a different problem, Subject Alternative isn't SNI.

Changed in wget (Debian):
status: Fix Released → Unknown
Bug Watch Updater (bug-watch-updater)
Changed in wget (Debian):
status: Unknown → Confirmed
Nokir (nokir)
Changed in wget (Ubuntu):
status: Triaged → Confirmed
Bug Watch Updater (bug-watch-updater)
Changed in wget (Debian):
status: Confirmed → Fix Released
Revision history for this message
Simon Déziel (sdeziel) wrote :

This bug was fixed in wget 1.14-1 and this version was imported into Raring, so SNI support is enabled for Raring and later releases (>= 13.04).

Changed in wget (Ubuntu):
status: Confirmed → Fix Released
To post a comment you must log in.
This report contains Public information  
Everyone can see this information.
Subscribing...

Other bug subscribers

Remote bug watches

Bug watches keep track of this bug in other bug trackers.