Package: libnet-ssleay-perl Version: 1.25-2 Severity: grave Justification: renders package unusable
When smbldap-tools (0.9.1-2) is trying to contact a slapd server using TLS, the operation fails. The server (slapd_2.2.26-4.0.1 linked with libssl0.9.8_0.9.8a-2) refuses to accept the client certificate, signalling: TLS trace: SSL3 alert write:fatal:protocol version TLS trace: SSL_accept:error in SSLv3 read client certificate A TLS: can't accept. TLS: error:1408F10B:SSL routines:SSL3_GET_RECORD:wrong version number s3_pkt.c:288 connection_read(12): TLS accept error error=-1 id=0, closing Earlier in the trace: TLS trace: SSL_accept:SSLv3 flush data tls_read: want=5 error=Resource temporarily unavailable TLS trace: SSL_accept:error in SSLv3 read client certificate A TLS trace: SSL_accept:error in SSLv3 read client certificate A smbldap-tools has been configure to NOT offer a client certificate, so it is plausible that libnet-ssleay-perl offers some garbage in lieu of a certicate to the server, triggering the protocol version error. libnet-ssleay-perl_1.25-1.1 does not exhibit this behaviour. -- System Information: Debian Release: testing/unstable APT prefers unstable APT policy: (500, 'unstable'), (1, 'experimental') Architecture: i386 (i686) Shell: /bin/sh linked to /bin/bash Kernel: Linux 2.6.13.2-alphac Locale: LANG=C, LC_CTYPE=C (charmap=ANSI_X3.4-1968) Versions of packages libnet-ssleay-perl depends on: ii libc6 2.3.5-7 GNU C Library: Shared libraries an ii libssl0.9.8 0.9.8a-2 SSL shared libraries ii perl 5.8.7-7 Larry Wall's Practical Extraction ii perl-base [perlapi-5.8.7] 5.8.7-7 The Pathologically Eclectic Rubbis libnet-ssleay-perl recommends no packages. -- no debconf information
pgp124gejJZqw.pgp
Description: PGP signature