There’s a serious bug in v1.1.1 preventing SNI to function properly for some server software, eg Apache Traffic Server. This is fixed in v1.1.1a, so it would be great if we can get this package updated as soon as possible. Thanks! — Leif
The same SNI issue has impact on clients like gajim which uses openssl via python dependency tree. gajim is unable to proceed with correct handshake against google talk/hangouts server. Server returns cert with "OU: No SNI provided; please fix your client."
openssl-1.1.1a-1.fc29 has been submitted as an update to Fedora 29. https://bodhi.fedoraproject.org/updates/FEDORA-2019-a8ffcff7ee
openssl-1.1.1a-1.fc29 has been pushed to the Fedora 29 testing repository. If problems still persist, please make note of it in this bug report. See https://fedoraproject.org/wiki/QA:Updates_Testing for instructions on how to install test updates. You can provide feedback for this update here: https://bodhi.fedoraproject.org/updates/FEDORA-2019-a8ffcff7ee
openssl-1.1.1a-1.fc29 has been pushed to the Fedora 29 stable repository. If problems still persist, please make note of it in this bug report.