[Pkg-openssl-devel] Bug#556211: openssl: 0.9.8k-6 silently breaks renegotiation in s_client util

Stefan Fritsch sf at sfritsch.de
Sat Nov 14 11:23:52 UTC 2009

Package: openssl
Version: 0.9.8k-6
Severity: normal

With 0.9.8k-6, when one presses R <cr> in openssl s_client, it still says
"RENEGOTIATING" while it actually isn't renegotiating. This makes it hard
to test if a server is allowing client-initiated renegotiation.

-- System Information:
Debian Release: squeeze/sid
  APT prefers unstable
  APT policy: (500, 'unstable'), (500, 'stable')
Architecture: i386 (x86_64)

Kernel: Linux 2.6.31-1-amd64 (SMP w/8 CPU cores)
Locale: LANG=de_DE, LC_CTYPE=de_DE (charmap=ISO-8859-1)
Shell: /bin/sh linked to /bin/dash

Versions of packages openssl depends on:
ii  libc6                  2.10.1-7          GNU C Library: Shared libraries
ii  libssl0.9.8            0.9.8k-6          SSL shared libraries
ii  zlib1g                 1: compression library - runtime

openssl recommends no packages.

Versions of packages openssl suggests:
ii  ca-certificates               20090814   Common CA certificates

-- no debconf information

More information about the Pkg-openssl-devel mailing list