[Bug 1444656] Re: GnuTLS TLS 1.2 handshake failure
LocutusOfBorg
costamagnagianfranco at yahoo.it
Mon Sep 4 06:12:58 UTC 2017
** Attachment added: "debdiff"
https://bugs.launchpad.net/ubuntu/trusty/+source/gnutls26/+bug/1444656/+attachment/4943939/+files/debdiff
--
You received this bug notification because you are a member of Ubuntu
Sponsors Team, which is subscribed to the bug report.
https://bugs.launchpad.net/bugs/1444656
Title:
GnuTLS TLS 1.2 handshake failure
Status in gnutls26 source package in Trusty:
In Progress
Bug description:
[ Impact ]
* GnuTLS fails to handshake using TLS 1.2 because of a protocol failure
[ Other info ]
I'm experiencing the same issue as here:
http://comments.gmane.org/gmane.network.gnutls.general/3713
I came across a SSL handshake problem with gnutls-cli when connecting to
some websites, see below. It is somehow specific to gnutls as
openssl/Chrome/Firefox can connect fine.
Is this is a bug in gnutls or do you have any ideas how to
troubleshoot it?
$ gnutls-cli --version
gnutls-cli (GnuTLS) 2.12.23
Packaged by Debian (2.12.23-12ubuntu2.1)
[ Test case ]
$ gnutls-cli www.openlearning.com
Resolving 'www.openlearning.com'...
Connecting to '119.9.9.205:443'...
*** Fatal error: A TLS fatal alert has been received.
*** Received alert [40]: Handshake failed
*** Handshake has failed
GnuTLS error: A TLS fatal alert has been received.
$ gnutls-cli sequencewiz.com
Resolving 'sequencewiz.com'...
Connecting to '50.112.144.117:443'...
*** Fatal error: A TLS packet with unexpected length was received.
*** Handshake has failed
GnuTLS error: A TLS packet with unexpected length was received.
[ Regression potential ]
* None, this is an upstream commit dated back 6 years ago, that trusty sadly missed
Thank you,
Please back port the latest GnuTLS to Trusty as it is an LTS release
and clearly GnuTLS 2.12 is an old branch.
I've also attached packet captures of this.
To manage notifications about this bug go to:
https://bugs.launchpad.net/ubuntu/trusty/+source/gnutls26/+bug/1444656/+subscriptions
More information about the Ubuntu-sponsors
mailing list