isync does not provide SNI when using SSL

Bug #1796779 reported by Eduardo Bustamante on 2018-10-09
This bug affects 3 people
Affects Status Importance Assigned to Milestone
isync (Ubuntu)

Bug Description returns an invalid certificate (OU = "No SNI provided; please fix your client.", CN = invalid2.invalid) when no SNI is provided.

This was patched in the 1.3 upstream branch (, and is also present in Debian's build of isync (1.3.0-2),

Eduardo Bustamante (dualbus) wrote :
Download full text (4.5 KiB)

This is the certificate returned by gmail:

dualbus@ubuntu:~$ openssl x509 -in invalid.der -inform DER -text
        Version: 3 (0x2)
        Serial Number:
        Signature Algorithm: sha256WithRSAEncryption
        Issuer: OU = "No SNI provided; please fix your client.", CN = invalid2.invalid
            Not Before: Jan 1 00:00:00 2015 GMT
            Not After : Jan 1 00:00:00 2030 GMT
        Subject: OU = "No SNI provided; please fix your client.", CN = invalid2.invalid
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Key Usage: critical
                Digital Signature, Key Encipherment, Certificate Sign
            X509v3 Extended Key Usage:
                TLS Web Server Authentication, TLS Web Client Authentication
            X509v3 Basic Constraints: critical
            X509v3 Subject Key Identifier:
    Signature Algorithm: sha256WithRSAEncryption


Launchpad Janitor (janitor) wrote :

Status changed to 'Confirmed' because the bug affects multiple users.

Changed in isync (Ubuntu):
status: New → Confirmed
Nick Anderson (nick-anders0n) wrote :

This looks to have been patched upstream:

Nick Anderson (nick-anders0n) wrote :

As a workaround, I just grabbed and installed the 1.3.0-2 package from sid

and it works for me.

To post a comment you must log in.
This report contains Public information  Edit
Everyone can see this information.

Other bug subscribers