Uploaded image for project: 'Qt'
  1. Qt
  2. QTBUG-47528

Server Name Indication not sent with SslProtocol::TlsV1_1OrLater

    XMLWordPrintable

Details

    • Bug
    • Resolution: Done
    • P1: Critical
    • 5.5.1
    • 5.5.0
    • Network: SSL
    • None
    • Qt 5.5.0 on Ubuntu 14.04
    • 0d3c8feeeb3c49d01bcfbca63b672e20ab29aa9f

    Description

      When establishing a connection using SslProtocol::TlsV1_1OrLater the SNI is not sent.
      Looking at the code this seems to be a migration issue when introducing new SslProtocol values:

      if ((configuration.protocol == QSsl::TlsV1SslV3 ||
        configuration.protocol == QSsl::TlsV1_0 ||
        configuration.protocol == QSsl::TlsV1_1 ||
        configuration.protocol == QSsl::TlsV1_2 ||
        configuration.protocol == QSsl::SecureProtocols ||
        configuration.protocol == QSsl::AnyProtocol) &&
        mode == QSslSocket::SslClientMode && q_SSLeay() >= 0x00090806fL) {
... // set SNI
}

      see: https://github.com/qtproject/qtbase/blob/dev/src/network/ssl/qsslsocket_openssl.cpp#L383

      Attachments

        No reviews matched the request. Check your Options in the drop-down menu of this sections header.

        Activity

          People

            richmoore Richard Moore (qtnetwork)
            sebastianloesch Sebastian Lösch
            Votes:
            0 Vote for this issue
            Watchers:
            1 Start watching this issue

            Dates

              Created:
              Updated:
              Resolved:

              Gerrit Reviews

                There are no open Gerrit changes