Apache 2.2 SNI support

Bug #184131 reported by Zachary Schneider on 2008-01-18
This bug affects 5 people
Affects Status Importance Assigned to Milestone
Apache2 Web Server
Fix Released
apache2 (Debian)
Fix Released
apache2 (Ubuntu)

Bug Description

Binary package hint: apache2

I am writing to see if this of enough importance to get this patch into the apache version that will ship with Hardy.

A discussion from ASF along with the patch can be found here:

It looks like the patch has been applied to trunk, I think this would be the future 2.4 release.
However there is a patch available for the 2.2 tree that enables SNI support.

I am currently working on getting SNI support into safari (apple developer bug reports), having it in the next ubuntu LTS release would most likely be welcomed by many hosting companies.

Thank You.

Related branches

Mathias Gug (mathiaz) on 2008-01-21
Changed in apache2:
importance: Undecided → Wishlist
status: New → Triaged
Changed in apache2:
status: Unknown → Confirmed
Changed in apache2:
status: Unknown → New
Mathias Gug (mathiaz) wrote :

In order to get SNI support, openssl needs to be compiled with the enable-tlsext option.

Mathias Gug (mathiaz) wrote :

Support for tls extension in openssh have been asked in bug 186844.

Nicolas Valcarcel (nvalcarcel) wrote :

didn't you mean openssl instead of openssh?

Mathias Gug (mathiaz) wrote :

Yes - I meant openssl

Changed in apache2:
assignee: nobody → mathiaz
status: Triaged → In Progress
Mathias Gug (mathiaz) on 2008-05-13
Changed in apache2:
assignee: mathiaz → nobody
status: In Progress → Triaged
Mathias Gug (mathiaz) wrote :

It seems that there are some security issues with the current SNI patch for 2.2.

They may be resolved in the 2.4 branch which should be backported to 2.2.

Changed in apache2:
status: Confirmed → Fix Released
Chuck Short (zulcss) wrote :

This is fixed for Intrepid.

Chuck Short (zulcss) wrote :

This is fixed for karmic.


Changed in apache2 (Ubuntu):
status: Triaged → Fix Released
cc (codecrumb) wrote :

Are there any plans to backport this to hardy?

Changed in apache2:
importance: Unknown → Wishlist
Changed in apache2 (Debian):
status: New → Fix Released
To post a comment you must log in.
This report contains Public information  Edit
Everyone can see this information.

Other bug subscribers

Related blueprints

Remote bug watches

Bug watches keep track of this bug in other bug trackers.