Package: libssl1.0.0
Version: 1.0.1e-1
Severity: normal

After upgrading libssl1.0.0 from 1.0.1c-4 to 1.0.1e-1, using the
openconnect VPN client (version 3.20-3, both before and after the
openssl upgrade) produces many of these messages, about one pair per
minute:

Feb 27 09:08:52 asenath openconnect[4692]: DTLS handshake failed: 1
Feb 27 09:08:52 asenath openconnect[4692]: 140011978094248:error:14102410:SSL 
routines:DTLS1_READ_BYTES:sslv3 alert handshake failure:d1_pkt.c:1166:SSL alert 
number 40

Within the first minute after starting openconnect, I also see one like
this, which doesn't recur:

Feb 27 09:07:50 asenath openconnect[4692]: DTLS handshake failed: 2

None of these appeared before this upgrade. 

I don't see any impact on openconnect's actual functionality, so it
appears to retry in some manner more acceptable to openssl.

It is, of course, possible that the openssl change is perfectly correct,
and that this bug should be reassigned to openconnect for a
"compatibility catch-up" change.


-- System Information:
Debian Release: 7.0
  APT prefers testing-updates
  APT policy: (500, 'testing-updates'), (500, 'testing')
Architecture: amd64 (x86_64)

Kernel: Linux 3.2.0-4-amd64 (SMP w/4 CPU cores)
Locale: LANG=en_US.UTF-8, LC_CTYPE=en_US.UTF-8 (charmap=UTF-8)
Shell: /bin/sh linked to /bin/dash

Versions of packages libssl1.0.0 depends on:
ii  debconf [debconf-2.0]  1.5.49
ii  libc6                  2.13-38
ii  multiarch-support      2.13-38
ii  zlib1g                 1:1.2.7.dfsg-13

libssl1.0.0 recommends no packages.

libssl1.0.0 suggests no packages.

-- debconf information:
  libssl1.0.0/restart-failed:
* libssl1.0.0/restart-services:


-- 
To UNSUBSCRIBE, email to debian-bugs-dist-requ...@lists.debian.org
with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org

Reply via email to