Ticket #386 (new defect)

Opened 2 years ago

Last modified 2 days ago

TLS servername extension (SNI) for namebased TLS-vhosts

Reported by: akorthaus@web.de Assigned to: jan
Priority: normal Milestone:
Component: core Version:
Severity: normal Keywords:
Cc: Blocking:
Need Feedback: 0

Description

What about implementing TLS and the servername extension?

SNI makes it possible to have secure Vhosts (TLS) which are namebased, and use only one IP, not IP based as today necessary for SSL (with an extra IP for every Hostname).

This feature is allready included in Opera and will be included in next IE and Mozilla releases.

Support in IE7: http://blogs.msdn.com/ie/archive/2005/10/22/483795.aspx Support in Opera8: http://my.opera.com/community/dev/tp/760/tls11/info/ Patch for Mozilla: https://bugzilla.mozilla.org/show_bug.cgi?id=116169

example: https://sni.corelands.com/

SNI: http://paul.querna.org/journal/articles/2005/04/24/tls-server-name-indication?postid=70

Attachments

lighttpd_1.4.18_tls_server_name_indication.patch (10.1 kB) - added by phc on 11/12/2007 11:48:36 PM.
TLS server name indication support (lighttpd 1.4.18)
lighttpd_1.5.0_r2022_tls_server_name_indication.patch (9.4 kB) - added by phc on 11/18/2007 01:53:51 PM.
TLS server name indication support (lighttpd 1.5.0-svn)
lighttpd_1.4.x_r2024_tls_server_name_indication.patch (10.1 kB) - added by phc on 11/18/2007 01:54:09 PM.
TLS server name indication support (lighttpd 1.4.x-svn)
lighttpd_1.4.x_r2118_tls_server_name_indication.patch (10.2 kB) - added by phc on 03/08/2008 05:42:48 PM.
TLS server name indication support (lighttpd 1.4.x-svn)
lighttpd_1.5.0_r2171_tls_server_name_indication.patch (10.5 kB) - added by phc on 05/15/2008 08:00:04 PM.
TLS server name indication support (lighttpd 1.5.0-svn)

Change History

06/20/2007 09:49:40 AM changed by anonymous

is someone working on this thing?

06/20/2007 10:03:02 AM changed by darix

  • blocking changed.
  • pending changed.

not atm. we dont support gnutls for ssl and openssl needs 0.9.9 afaik to support SNI. 0.9.9 is not released yet. that said... we cant support it atm.

10/22/2007 11:47:23 PM changed by anonymous

OpenSSL 0.9.8f has been released and supports SNI.

10/25/2007 11:58:32 AM changed by meka

OpenSSL 0.9.8f supports SNI, so should we expect SNI support in 1.4 or 1.5 (or both?)? Thanx!

11/12/2007 11:48:04 PM changed by phc

Hi,

after checking out the server name indication patch for apache's mod_ssl, I decided to implement TLS server name extension support for lighttpd.

For TLS server name indication to work, OpenSSL 0.9.8f or greater is required and has to be compiled with enable-tlsext, which is not yet done by default with most distributions (at least not with Debian unstable).

With the appropriate patch applied against either lighttpd 1.4.18 or 1.5.0-svn, it is then possible to specify additional certificates within $HTTP["host"] conditionals, e.g. 

$SERVER["socket"] == "10.0.0.1:443" {
  ssl.engine                  = "enable"
  ssl.pemfile                 = "www.example.org.pem"

  $HTTP["host"] == "foo.example.org" {
    ssl.pemfile                 = "foo.example.org.pem"
  }

  $HTTP["host"] =~ "^(bar\.)example.org(:|$)" {
    # certificate with subjectAltName=DNS:example.org,DNS:bar.example.org
    ssl.pemfile                 = "bar.example.org.pem"
  }
}

$HTTP["host"] == "foo.example.org" {
  document.root               = "/srv/www/foo.example.org"
}

or, alternatively, 

$SERVER["socket"] == "10.0.0.1:443" {
  ssl.engine                  = "enable"
  ssl.pemfile                 = "www.example.org.pem"
}

$HTTP["host"] == "foo.example.org" {
  ssl.pemfile                 = "foo.example.org.pem"
  document.root               = "/srv/www/foo.example.org"
}

$HTTP["host"] =~ "^(bar\.)example.org(:|$)" {
  # certificate with subjectAltName=DNS:example.org,DNS:bar.example.org
  ssl.pemfile                 = "bar.example.org.pem"
}

Besides ssl.pemfile, ssl.ca-file and ssl.cipher-list (with lighttpd 1.4.18 only) may also be configured independently for each virtual host. As TLS extensions are not supported in SSLv2, however, it does not make any sense to set ssl.use-sslv2 within a $HTTP["host"] conditional.

On the client side, I had success with both Firefox 2.0 and Opera 9 (running on GNU/Linux).

Regards, Peter

11/12/2007 11:48:36 PM changed by phc

  • attachment lighttpd_1.4.18_tls_server_name_indication.patch added.

TLS server name indication support (lighttpd 1.4.18)

11/18/2007 01:10:17 PM changed by phc

Following up, here are some updated patches for lighttpd trunk and the lighttpd-1.4.x branch.

These include support for $HTTP["scheme"] conditionals, e.g. 

$HTTP["scheme"] == "https" {
  $HTTP["host"] == "foo.example.org" {
    document.root               = "/srv/www/foo.example.org"
    ssl.pemfile                 = "foo.example.org.pem"
  }
}

11/18/2007 01:53:51 PM changed by phc

  • attachment lighttpd_1.5.0_r2022_tls_server_name_indication.patch added.

TLS server name indication support (lighttpd 1.5.0-svn)

11/18/2007 01:54:09 PM changed by phc

  • attachment lighttpd_1.4.x_r2024_tls_server_name_indication.patch added.

TLS server name indication support (lighttpd 1.4.x-svn)

03/08/2008 05:42:48 PM changed by phc

  • attachment lighttpd_1.4.x_r2118_tls_server_name_indication.patch added.

TLS server name indication support (lighttpd 1.4.x-svn)

03/08/2008 05:56:35 PM changed by phc

A minor update for lighttpd 1.4.x r2080 or later, especially the 1.4.19~r2118 pre-release.

From changeset 2080 onwards, the cond_cache is reset after invocation of the TLS servername callback function (in response.c instead of connections.c). Therefore, the following lines are also necessary in the network_ssl_servername_callback function: 

config_cond_cache_reset(srv, con);
config_setup_connection(srv, con);

(follow-up: ↓ 9 ) 05/15/2008 06:24:14 PM changed by webmaster@lord-pinhead.com

Is the SNI Patch in the 1.5 Version of the SVN included? When i make a dry-run of the 1.5 Patch, there are many hunks. I tryed it with 2 different CERTS, but just the main cert will be delivered from the server, no the other cert i wanted.

-- snip --

$SERVERsocket? == "192.168.2.110:443" {

ssl.engine = "enable" ssl.pemfile = "/etc/pkis/CA/private/intranet.intra-key-cert.pem"

$HTTPhost? == "intranet.intra" {

ssl.pemfile = "/etc/pkis/CA/private/intranet.intra-key-cert.pem"

}

$HTTPhost? == "tf.intranet" {

ssl.pemfile = "/etc/pkis/CA/private/tf.intranet-key-cert.pem"

}

}

-- snip--

he can read the intraner.intra cert, but wont read the other cert. I checked out the newest version of lighttpd at 4pm this day, dont remember the revision. Do i need to use 1.4.x tree?

(in reply to: ↑ 8 ) 05/15/2008 07:58:57 PM changed by phc

Replying to webmaster@lord-pinhead.com:

Is the SNI Patch in the 1.5 Version of the SVN included?

No, it has not yet been integrated into lighttpd trunk.

When i make a dry-run of the 1.5 Patch, there are many hunks. I tryed it with 2 different CERTS, but just the main cert will be delivered from the server, no the other cert i wanted.

I updated the lighttpd-1.5 patch for svn r2171, that should make it work again.

05/15/2008 08:00:04 PM changed by phc

  • attachment lighttpd_1.5.0_r2171_tls_server_name_indication.patch added.

TLS server name indication support (lighttpd 1.5.0-svn)

05/15/2008 08:15:22 PM changed by webmaster@lord-pinhead.com

Thanks, the Patch works fine :) Now i can make a quick howto about Lighty and SNI and change my production servers.

Add/Change #386 (TLS servername extension (SNI) for namebased TLS-vhosts)




Change Properties