[Pkg-erlang-devel] wheezy - Bug with RC4 cipher support erlang/otp
Philippe April
philippe at philippeapril.com
Thu Mar 10 22:01:09 UTC 2011
Hi !
While setting up RabbitMQ over SSL, I hit a sneaky bug regarding RC4 cipher support.
Somebody issued a patch for it (a one word patch !) a little while ago (ok, the tests he included makes the patch a little bigger):
https://github.com/pguyot/otp/commit/c1af26a59c46a6f9d295a0374326574157f6d8a5
pguyot fixed it in the erlang/top git too !
https://github.com/erlang/otp/commit/c1af26a59c46a6f9d295a0374326574157f6d8a5
So basically, it's now fixed in erlang-crypto 1:14.b.1 (Debian sid), but not wheezy.
The RC4 cipher is used by my RabbitMQ C# library by default and I can not change it. Maybe it's the .NET ssl implementation which chooses it.
It would be great if it could also be fixed in wheezy, that way I wouldn't have to recompile the package myself with the patch :)
Let me know if I'm not talking to the right people, thank you!
Philippe April
More information about the Pkg-erlang-devel
mailing list