[Pkg-openssl-devel] Bug#907049: openssl: Update to 1.1.1~~pre9-1 makes certain programs unusable
Antonin Kral
A.Kral at bobek.cz
Thu Aug 23 13:54:36 BST 2018
Package: openssl
Version: 1.1.1~~pre9-1
Severity: critical
Justification: renders other packages unusable
Hi,
I have got openssl 1.1.1~~pre9-1 as it is landed in sid. After upgrading
certain applications are not able to establish connection.
Example of offlineimap:
ERROR: Unknown SSL protocol connecting to host 'imap.gmail.com' for repository 'showmax-remote'. OpenSSL responded:
[SSL: CERTIFICATE_VERIFY_FAILED] certificate verify failed (_ssl.c:726)
Example of openvpn:
Thu Aug 23 14:46:07 2018 OpenSSL: error:1425F18C:SSL routines:ssl_choose_client_version:version too low
Thu Aug 23 14:46:07 2018 TLS_ERROR: BIO read tls_read_plaintext error
Thu Aug 23 14:46:07 2018 TLS Error: TLS object -> incoming plaintext read error
Thu Aug 23 14:46:07 2018 TLS Error: TLS handshake failed
I went through changelogs, but was not seen anything what would help me
in debugging the issue. Interestingly s_client and curl is able to
establish a connection even with new version. Maybe that can be related
to different default cipher_set?
Thank you for any hints. Antonin
-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 833 bytes
Desc: not available
URL: <http://alioth-lists.debian.net/pipermail/pkg-openssl-devel/attachments/20180823/c43feee2/attachment.sig>
More information about the Pkg-openssl-devel
mailing list