Your message dated Sun, 17 Feb 2019 03:30:21 -0500
with message-id <3550665.7WxPIzHVdq@kitterma-e6430>
and subject line Re: Failure to call OpenSSL_add_ssl_algorithms()
has caused the Debian Bug report #573748,
regarding libssl0.9.8: unknown message digest algorithm error in postfix
to be marked as done.

This means that you claim that the problem has been dealt with.
If this is not the case it is now your responsibility to reopen the
Bug report if necessary, and/or fix the problem forthwith.

(NB: If you are a system administrator and have no idea what this
message is talking about, this may indicate a serious mail system
misconfiguration somewhere. Please contact [email protected]
immediately.)


-- 
573748: https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=573748
Debian Bug Tracking System
Contact [email protected] with problems
--- Begin Message ---
Package: libssl0.9.8
Version: 0.9.8m-2
Severity: important

With this version I am not longer able to use my self signed signatures in
postfix. The error that is reported in mail.log is:

Mar 13 15:42:59 majoron postfix/smtpd[14710]: SSL_accept error from 
xxx.cable.ziggo.nl[94.209.xxx.yyy]: -1
Mar 13 15:42:59 majoron postfix/smtpd[14710]: warning: TLS library problem: 
14710:error:0D0C50A1:asn1 encoding routines:ASN1_item_verify:unknown message 
digest algorithm:a_verify.c:146:

I can reporduce the error with

$ openssl s_client -connect vdberg.org:26 -CAfile 
/etc/ssl/certs/vdberg.org.ca.pem -starttls smtp
CONNECTED(00000003)
5657:error:140790E5:SSL routines:SSL23_WRITE:ssl handshake
failure:s23_lib.c:188:

This looks a lot like #541735 which was fixed in 0.9.8k-5

Reverting back to libssl0.9.8_0.9.8k-7_amd64.deb solved this issue for me.

-- System Information:
Debian Release: 5.0.4
  APT prefers stable
  APT policy: (990, 'stable'), (400, 'testing'), (300, 'experimental'), (300, 
'unstable')
Architecture: amd64 (x86_64)

Kernel: Linux 2.6.33-Soleus64 (SMP w/1 CPU core)
Locale: LANG=en_US.UTF-8, LC_CTYPE=en_US.UTF-8 (charmap=UTF-8)
Shell: /bin/sh linked to /bin/bash

Versions of packages libssl0.9.8 depends on:
ii  debconf [debconf-2.0]   1.5.24           Debian configuration management sy
ii  libc6                   2.10.2-6         Embedded GNU C Library: Shared lib
ii  zlib1g                  1:1.2.3.4.dfsg-3 compression library - runtime

libssl0.9.8 recommends no packages.

libssl0.9.8 suggests no packages.

-- debconf information excluded



--- End Message ---
--- Begin Message ---
On Sun, 6 Jun 2010 19:31:13 +0200 Kurt Roeckx <[email protected]> wrote:
> Since openssl (libssl0.9.8) 0.9.8o-1, defaults got changed to load
> SHA2 algorithmes in SSL_library_init(), and calling
> OpenSSL_add_all_algorithms() isn't needed for them anymore.

It doesn't look like there is an actual problem remaining here, so closing.

Scott K

--- End Message ---

Reply via email to