Please read this before reporting a bug:
https://wiki.archlinux.org/title/Bug_reporting_guidelines
Do NOT report bugs when a package is just outdated, or it is in the AUR. Use the 'flag out of date' link on the package page, or the Mailing List.
REPEAT: Do NOT report bugs for outdated packages!
https://wiki.archlinux.org/title/Bug_reporting_guidelines
Do NOT report bugs when a package is just outdated, or it is in the AUR. Use the 'flag out of date' link on the package page, or the Mailing List.
REPEAT: Do NOT report bugs for outdated packages!
FS#12761 - OpenSSL 0.9.8j breaks pyopenssl SSLv3_METHOD
Attached to Project:
Arch Linux
Opened by Christian Scharkus (raubkopierer) - Monday, 12 January 2009, 15:06 GMT
Last edited by Jan de Groot (JGC) - Thursday, 28 May 2009, 18:41 GMT
Opened by Christian Scharkus (raubkopierer) - Monday, 12 January 2009, 15:06 GMT
Last edited by Jan de Groot (JGC) - Thursday, 28 May 2009, 18:41 GMT
|
DetailsDescription:
I have some problems to connect with pyopenssl to kekz.net:23002. The Certificate seems to be valid with $ openssl s_client -connect kekz.net:23002 But then I'm using pyopenssl the connection fails. This little example should demonstrate the problem: http://codepad.org/hGkrKp7b Additional info: pyopenssl-0.8-1 openssl-0.9.8j-1 |
This task depends upon
Closed by Jan de Groot (JGC)
Thursday, 28 May 2009, 18:41 GMT
Reason for closing: Not a bug
Additional comments about closing: Closing this. The example code works fine. Googling for the exception, it seems the server doesn't support SSLv3 when that error occurs. I can't reproduce this anymore, so I assume this bug is fixed, or the server running on kekz.net has fixed their SSL implementation.
Thursday, 28 May 2009, 18:41 GMT
Reason for closing: Not a bug
Additional comments about closing: Closing this. The example code works fine. Googling for the exception, it seems the server doesn't support SSLv3 when that error occurs. I can't reproduce this anymore, so I assume this bug is fixed, or the server running on kekz.net has fixed their SSL implementation.
$ python
Python 2.6.1 (r261:67515, Dec 7 2008, 08:27:41)
[GCC 4.3.2] on linux2
Type "help", "copyright", "credits" or "license" for more information.
>>> import socket
>>> from OpenSSL.SSL import SSLv23_METHOD, SSLv3_METHOD, Connection, Context
>>> s = socket.socket()
>>> s1 = socket.socket()
>>> s2 = socket.socket()
>>> conn1 = Connection(Context(SSLv3_METHOD), s1)
>>> conn2 = Connection(Context(SSLv23_METHOD), s2)
>>> conn1.connect(('kekz.net',23002))
>>> conn2.connect(('kekz.net',23002))
>>> conn1.do_handshake()
Traceback (most recent call last):
File "<stdin>", line 1, in <module>
OpenSSL.SSL.Error: [('SSL routines', 'SSL3_GET_RECORD', 'wrong version number')]
>>> conn2.do_handshake()
>>> conn2.get_peer_certificate().get_issuer()
<X509Name object '/O=Root CA/OU=http://www.cacert.org/CN=CA Cert Signing Authority/emailAddress=support@cacert.org'>
>>>