[Pkg-openssl-devel] Bug#390415: openssl: Cannot Get Private Key from Cert Created

Mohamed Sulaiman Sultan Suhaibuddeen sulaiman at azrb.com
Sat Oct 7 13:26:27 UTC 2006



Hi,

I had regenate the key, but this is shown in my mail.log,
is't normal? please advice

---------------------------------------------------------------------------------

Oct  7 18:53:13 mail postfix/smtpd[4081]: setting up TLS
connection from unknown[202.75.42.117]
Oct  7 18:53:13 mail
postfix/smtpd[4081]: SSL_accept:before/accept initialization
Oct  7 18:53:13 mail postfix/smtpd[4081]: read from 080A3310
[080B4F80] (11 bytes => -1 (0xFFFFFFFF))
Oct  7 18:53:13 mail
postfix/smtpd[4081]: SSL_accept:error in SSLv2/v3 read client hello A
Oct  7 18:53:13 mail postfix/smtpd[4081]: read from 080A3310
[080B4F80] (11 bytes => 11 (0xB))
Oct  7 18:53:13 mail
postfix/smtpd[4081]: 0000 80 8c 01 03 01 00
63                            
......c
Oct  7 18:53:13 mail postfix/smtpd[4081]: 0007 -
<SPACES/NULLS>
Oct  7 18:53:13 mail postfix/smtpd[4081]:
read from 080A3310 [080B4F8B] (131 bytes => -1 (0xFFFFFFFF))
Oct  7 18:53:13 mail postfix/smtpd[4081]: SSL_accept:error in
SSLv2/v3 read client hello B
Oct  7 18:53:13 mail
postfix/smtpd[4081]: read from 080A3310 [080B4F8B] (131 bytes => 131
(0x83))
...                                    
.b.
Oct  7 18:53:13 mail postfix/smtpd[4081]: SSL_accept:SSLv3
read client hello A
Oct  7 18:53:13 mail postfix/smtpd[4081]:
SSL_accept:SSLv3 write server hello A
Oct  7 18:53:13 mail
postfix/smtpd[4081]: SSL_accept:SSLv3 write certificate A
Oct  7
18:53:13 mail postfix/smtpd[4081]: SSL_accept:SSLv3 write key exchange
A
Oct  7 18:53:13 mail postfix/smtpd[4081]: SSL_accept:SSLv3
write server done A
Oct  7 18:53:13 mail postfix/smtpd[4081]:
write to 080A3310 [080C30F0] (1944 bytes => 1944 (0x798))
...                               
.....
Oct  7 18:53:13 mail postfix/smtpd[4081]: 0795 -
<SPACES/NULLS>
Oct  7 18:53:13 mail postfix/smtpd[4081]:
SSL_accept:SSLv3 flush data
Oct  7 18:53:13 mail
postfix/smtpd[4081]: read from 080A3310 [080B4F80] (5 bytes => -1
(0xFFFFFFFF))
Oct  7 18:53:13 mail postfix/smtpd[4081]:
SSL_accept:error in SSLv3 read client certificate A
Oct  7
18:53:13 mail postfix/smtpd[4081]: SSL_accept:error in SSLv3 read client
certificate A
Oct  7 18:53:13 mail postfix/smtpd[4081]: read
from 080A3310 [080B4F80] (5 bytes => 5 (0x5))
Oct  7 18:53:13
mail postfix/smtpd[4081]: 0000 16 03 01 00
86                                  
.....
Oct  7 18:53:13 mail postfix/smtpd[4081]: read from
080A3310 [080B4F85] (134 bytes => -1 (0xFFFFFFFF))
Oct  7
18:53:13 mail postfix/smtpd[4081]: SSL_accept:error in SSLv3 read client
certificate A
Oct  7 18:53:13 mail postfix/smtpd[4081]: read
from 080A3310 [080B4F85] (134 bytes => 134 (0x86))
...
Oct  7 18:53:13 mail postfix/smtpd[4081]: SSL_accept:SSLv3 read
client key exchange A
Oct  7 18:53:13 mail postfix/smtpd[4081]:
read from 080A3310 [080B4F80] (5 bytes => -1 (0xFFFFFFFF))
Oct  7 18:53:13 mail postfix/smtpd[4081]: SSL_accept:error in SSLv3
read certificate verify A
Oct  7 18:53:13 mail
postfix/smtpd[4081]: read from 080A3310 [080B4F80] (5 bytes => 5
(0x5))
Oct  7 18:53:13 mail postfix/smtpd[4081]: 0000 14 03 01
00
01                                  
.....
Oct  7 18:53:13 mail postfix/smtpd[4081]: read from
080A3310 [080B4F85] (1 bytes => -1 (0xFFFFFFFF))
Oct  7
18:53:13 mail postfix/smtpd[4081]: SSL_accept:error in SSLv3 read
certificate verify A
Oct  7 18:53:13 mail postfix/smtpd[4081]:
read from 080A3310 [080B4F85] (1 bytes => 1 (0x1))
Oct  7
18:53:13 mail postfix/smtpd[4081]: 0000
01                                              
.
Oct  7 18:53:13 mail postfix/smtpd[4081]: read from 080A3310
[080B4F80] (5 bytes => -1 (0xFFFFFFFF))
Oct  7 18:53:13 mail
postfix/smtpd[4081]: SSL_accept:error in SSLv3 read certificate verify
A
Oct  7 18:53:13 mail postfix/smtpd[4081]: read from 080A3310
[080B4F85] (1 bytes => 1 (0x1))
Oct  7 18:53:13 mail
postfix/smtpd[4081]: 0000
01                                              
.
Oct  7 18:53:13 mail postfix/smtpd[4081]: read from 080A3310
[080B4F80] (5 bytes => -1 (0xFFFFFFFF))
Oct  7 18:53:13 mail
postfix/smtpd[4081]: SSL_accept:error in SSLv3 read certificate verify
A
Oct  7 18:53:13 mail postfix/smtpd[4081]: read from 080A3310
[080B4F80] (5 bytes => 5 (0x5))
Oct  7 18:53:13 mail
postfix/smtpd[4081]: 0000 16 03 01 00
30                                  
....0
Oct  7 18:53:13 mail postfix/smtpd[4081]: read from
080A3310 [080B4F85] (48 bytes => -1 (0xFFFFFFFF))
Oct  7
18:53:13 mail postfix/smtpd[4081]: SSL_accept:error in SSLv3 read
certificate verify A
Oct  7 18:53:13 mail postfix/smtpd[4081]:
read from 080A3310 [080B4F85] (48 bytes => 48 (0x30))
...
Oct  7 18:53:13 mail postfix/smtpd[4081]: SSL_accept:SSLv3 read
finished A
Oct  7 18:53:13 mail postfix/smtpd[4081]:
SSL_accept:SSLv3 write change cipher spec A
Oct  7 18:53:13 mail
postfix/smtpd[4081]: SSL_accept:SSLv3 write finished A
Oct  7
18:53:13 mail postfix/smtpd[4081]: write to 080A3310 [080C30F0] (59 bytes
=> 59 (0x3B))
...
Oct  7 18:53:13 mail
postfix/smtpd[4081]: SSL_accept:SSLv3 flush data
Oct  7 18:53:13
mail postfix/smtpd[4081]: TLS connection established from
unknown[202.75.42.117]: TLSv1 with cipher DHE-RSA-AES256-SHA (256/256
bits)

---------------------------------------------------------------------------------

> Hello, 
> 
> Le dimanche 1 octobre 2006
10:00, System Administrator a écrit : 
>> Package:
openssl 
>> Version: 0.9.8c-2 
>> Severity: critical

>> Tags: l10n 
> ^^^^ 
> 
> Uuh? How
is this bug report localization related? 
> 
>>
initializing the server-side TLS engine 
>> warning: cannot get
private key from file /etc/postfix/ssl/req.pem 
> 
>>
warning: TLS library problem: 23458:error:0906D06C:PEM 
>>
routines:PEM_read_bio:no start line:pem_lib.c:644:Expecting: ANY 
>> PRIVATE KEY: 
> ^^^^^^^^^^^^^ 
> Are you sure
you have a -----BEGIN PRIVATE KEY----- line there at? 
> It merely
looks like your certificate file is broken. 
> 
> -- 
> Rémi Denis-Courmont 
> http://www.remlab.net/ 
> 

-------------- next part --------------
An HTML attachment was scrubbed...
URL: http://lists.alioth.debian.org/pipermail/pkg-openssl-devel/attachments/20061007/ea92f4e2/attachment-0001.htm


More information about the Pkg-openssl-devel mailing list