[Pkg-openssl-devel] Bug#1131904: libssl3t64: "LS alert, bad record mac (532)" / "decryption failed or bad record mac" since 3.6.1 on ppc64
Philipp Klaus Krause
pkk at spth.de
Thu Mar 26 20:50:39 GMT 2026
Am 26.03.26 um 19:07 schrieb Jeffrey Walton:
>>
>> Versions of packages libssl3t64 depends on:
>> ii libc6 2.42-13
>> ii libzstd1 1.5.7+dfsg-3+b1
>> ii openssl-provider-legacy 3.6.1-3
>> ii zlib1g 1:1.3.dfsg+really1.3.1-3
>>
>> libssl3t64 recommends no packages.
>>
>> libssl3t64 suggests no packages.
>>
>> -- no debconf information
>
> Interesting... 3.6.1-3 looks Ok on ppc64 and ppc64el according to
> <https://packages.debian.org/sid/libssl3t64>.
>
> Out of morbid curiosity... Is there any particular reason you need
> openssl-provider-legacy? Is something holding you back from using the
> modern version of OpenSSL? Also see the OSSL_PROVIDER-LEGACY(7SSL)
> man page, <https://manpages.debian.org/testing/openssl/OSSL_PROVIDER-legacy.7ssl.en.html>.
>
> Jeff
I have no idea about this stuff; installed the machine 3 years ago, and
have done an apt-get dist-upgrade once in a while, not really thinking
about openssl until I ran into this bug.
But as far as I can see, lots of stuff depends on libssl3t64, and
libssl3t64 depends on openssl-provider-legacy, so I guess I need it?
Philipp
More information about the Pkg-openssl-devel
mailing list