[Pkg-openssl-devel] Bug#701868: openssl communication problems with 1.0.1e with AES-NI

Graham Cobb g+debian at cobb.uk.net
Mon Mar 11 00:08:02 UTC 2013


On Saturday 09 March 2013 14:44:38 Kurt Roeckx wrote:
> So what upstream asks is to try and reproduce it with s_client.
> At least 1 person reported that this fails for him:
> openssl s_client -connect mail.uni-paderborn.de:465
> And then send "EHLO test"

No, that doesn't fail for me.

I have been unable to reproduce the problem using either s_client or s_server 
(or both).  I *can* reproduce the problem if I submit a particular email 
message to exim4 on my client, which then tries to send it to my postfix 
smarthost (the error occures in the postfix server smtpd receiving the 
message).  The content of the email message does not matter (I replaced all 
the content and headers with the letter "x"), but the length is critical.

However, I have tried both sending the message using s_client instead of exim4 
and receiving it in s_server instead of postfix and the problem does not occur 
in either case.  However, I do notice, from the logs, that these manual tests 
do not reproduce the same bundling of messages and responses nor, of course, 
the same timing.  And postfix makes heavy use of non-blocking BIO streams 
which I presume s_client and s_server do not.

> They asked if you use any LD_* environment variables.

No.

Graham



More information about the Pkg-openssl-devel mailing list