wget ignores subjectAltNames

The attached patch is the current upstream patch (file #18828) converted into a debdiff.

I've verified that this problem is present in lucid (wget 1.12-1.1ubuntu2.1) and fixed by the above debdiff.

Package: wget
Priority: important
Section: web
Installed-Size: 2304
Maintainer: Ubuntu Core developers <email address hidden>
Original-Maintainer: Noèl Köthe <email address hidden>
Architecture: i386
Version: 1.12-1.1ubuntu2.1
Depends: libc6 (>= 2.11), libssl0.9.8 (>= 0.9.8k-1), dpkg (>= 1.15.4) | install-info
Conflicts: wget-ssl
Filename: pool/main/w/wget/wget_1.12-1.1ubuntu2.1_i386.deb
Size: 289402
MD5sum: 78a00423731f5b937087fda628fc251c
SHA1: ad1affd0676227f1d15491cb5d0732f8676b616e
SHA256: 06df6e0f3b94c5fdd5b6258145e9b67d6d565cd8fcd3036b879508339da86164
Description: retrieves files from the web
 Wget is a network utility to retrieve files from the Web
 using http(s) and ftp, the two most widely used Internet
 protocols. It works non-interactively, so it will work in
 the background, after having logged off. The program supports
 recursive retrieval of web-authoring pages as well as ftp
 sites -- you can use wget to make mirrors of archives and
 home pages or to travel the Web like a WWW robot.
 .
 Wget works particularly well with slow or unstable connections
 by continuing to retrieve a document until the document is fully
 downloaded. Re-getting files from where it left off works on
 servers (both http and ftp) that support it. Both http and ftp
 retrievals can be time stamped, so wget can see if the remote
 file has changed since the last retrieval and automatically
 retrieve the new version if it has.
 .
 Wget supports proxy servers; this can lighten the network load,
 speed up retrieval, and provide access behind firewalls.
 .
 http://www.gnu.org/software/wget/
Homepage: http://www.gnu.org/software/wget/
Bugs: https://bugs.launchpad.net/ubuntu/+filebug
Origin: Ubuntu
Supported: 5y
Task: standard, mythbuntu-backend-master, mythbuntu-backend-master, mythbuntu-backend-slave, mythbuntu-backend-slave, mythbuntu-desktop, mythbuntu-frontend

attached the debdiff for natty

Thanks for working on this bug report. It'd be helpful to have a test case so we can test the fix that you've provided in the bug. Additionally, it would be helpful if you could add in the Launchpad bug to changelog like so:

(LP: #733888)

As the bug report will then be auto closed when the package is uploaded. Finally, your patch, as it exists in debian/patches, could use some meta information like the author and bug url. Thanks again!

This patch addresses the mentioned issues with the debdiff.
As a test case, try to
 wget -O test https://wwwneu.tu-ilmenau.de .
It fails with a certificate error if the patch is not applied.

Status changed to 'Confirmed' because the bug affects multiple users.

fixed in 1.14-1 released yesterday and available in Debian since today.