Subject: openssl: OpenSSL 1.1.1e and Gmail Certificates leads to KRB5_S_TKT_NYV and unexpected EOF on the connection Package: openssl Version: 1.1.1e-1 Severity: important
Hello, offlineimap stopped working for me after updating to 1.1.1e-1 with the following: Establishing connection to imap.gmail.com:993 (gmail-remote) ERROR: While attempting to sync account 'gmail' "[SSL: KRB5_S_TKT_NYV] unexpected eof while reading (_ssl.c:1946) I am not alone as others have reported the same issue upstream (while not directly offlineimap issue -- https://github.com/OfflineIMAP/offlineimap/issues/655 ). I am also aware that it is Python2. Downgrading to 1.1.1d-2 dpkg -i openssl_1.1.1d-2_amd64.deb libssl1.1_1.1.1d-2_amd64.deb libssl1.1_1.1.1d-2_i386.deb fixes the issue for me. Let me know if I can provide more information. Thank you, Antonin -- System Information: Debian Release: bullseye/sid APT prefers unstable APT policy: (500, 'unstable'), (1, 'experimental') Architecture: amd64 (x86_64) Foreign Architectures: i386 Kernel: Linux 5.5.0-rc5-amd64 (SMP w/8 CPU cores) Kernel taint flags: TAINT_WARN, TAINT_OOT_MODULE, TAINT_UNSIGNED_MODULE Locale: LANG=en_US.UTF-8, LC_CTYPE=en_US.UTF-8 (charmap=UTF-8), LANGUAGE=en_US.UTF-8 (charmap=UTF-8) Shell: /bin/sh linked to /usr/bin/dash Init: systemd (via /run/systemd/system) LSM: AppArmor: enabled Versions of packages openssl depends on: ii libc6 2.30-2 ii libssl1.1 1.1.1e-1 openssl recommends no packages. Versions of packages openssl suggests: ii ca-certificates 20190110 -- no debconf information