[Touch-packages] [Bug 1840902] Re: ejabberd fails incoming connections with "Failed to secure c2s connection: TLS failed: client renegotiations forbidden"
*** This bug is a duplicate of bug 1832933 *** https://bugs.launchpad.net/bugs/1832933 This seems fixed in the security pocket now. Thanks! -- You received this bug notification because you are a member of Ubuntu Touch seeded packages, which is subscribed to openssl in Ubuntu. https://bugs.launchpad.net/bugs/1840902 Title: ejabberd fails incoming connections with "Failed to secure c2s connection: TLS failed: client renegotiations forbidden" Status in ejabberd package in Ubuntu: New Status in openssl package in Ubuntu: Invalid Status in ejabberd source package in Bionic: New Status in openssl source package in Bionic: Invalid Bug description: ejabberd 18.01-2 on Bionic. Bad: openssl/libssl1.1 1.1.1-1ubuntu2.1~18.04.4 Good: openssl/libssl1.1 1.1.0g-2ubuntu4.3 This hit the Bionic security pocket yesterday, so everyone who uses unattended-upgrades for security only (which is the default) will have received this overnight. Workaround: downgrade openssl/libssl1.1 to 1.1.0g-2ubuntu4.3 using old builds that are available from https://launchpad.net/ubuntu/+source/openssl/1.1.0g-2ubuntu4.3 (follow the architecture link eg. "amd64") The error logged by ejabberd is: 2019-08-21 06:52:28.402 [warning] <0.539.0>@ejabberd_c2s:process_terminated:290 (tls|<0.539.0>) Failed to secure c2s connection: TLS failed: client renegotiations forbidden To manage notifications about this bug go to: https://bugs.launchpad.net/ubuntu/+source/ejabberd/+bug/1840902/+subscriptions -- Mailing list: https://launchpad.net/~touch-packages Post to : touch-packages@lists.launchpad.net Unsubscribe : https://launchpad.net/~touch-packages More help : https://help.launchpad.net/ListHelp
[Touch-packages] [Bug 1840902] Re: ejabberd fails incoming connections with "Failed to secure c2s connection: TLS failed: client renegotiations forbidden"
*** This bug is a duplicate of bug 1832933 *** https://bugs.launchpad.net/bugs/1832933 https://launchpad.net/ubuntu/+source/erlang-p1-tls/1.0.20-1ubuntu0.1 erlang-p1-tls (1.0.20-1ubuntu0.1) bionic; urgency=medium * Cherrypick upstream patches for openssl1.1 support: - fix client cert authentication - update test certificates - add support for 'no_tlsv1_3' option - testsuite fixes - do not attempt unsupported renegotiation LP: #1832933 -- Dimitri John Ledkov Sun, 16 Jun 2019 01:48:12 +0100 In updates. ** This bug has been marked a duplicate of bug 1832933 upgrade to libssl1.1 1.1.1-1ubuntu2.1~18.04.2 breaks ejabbrd -- You received this bug notification because you are a member of Ubuntu Touch seeded packages, which is subscribed to openssl in Ubuntu. https://bugs.launchpad.net/bugs/1840902 Title: ejabberd fails incoming connections with "Failed to secure c2s connection: TLS failed: client renegotiations forbidden" Status in ejabberd package in Ubuntu: New Status in openssl package in Ubuntu: Invalid Status in ejabberd source package in Bionic: New Status in openssl source package in Bionic: Invalid Bug description: ejabberd 18.01-2 on Bionic. Bad: openssl/libssl1.1 1.1.1-1ubuntu2.1~18.04.4 Good: openssl/libssl1.1 1.1.0g-2ubuntu4.3 This hit the Bionic security pocket yesterday, so everyone who uses unattended-upgrades for security only (which is the default) will have received this overnight. Workaround: downgrade openssl/libssl1.1 to 1.1.0g-2ubuntu4.3 using old builds that are available from https://launchpad.net/ubuntu/+source/openssl/1.1.0g-2ubuntu4.3 (follow the architecture link eg. "amd64") The error logged by ejabberd is: 2019-08-21 06:52:28.402 [warning] <0.539.0>@ejabberd_c2s:process_terminated:290 (tls|<0.539.0>) Failed to secure c2s connection: TLS failed: client renegotiations forbidden To manage notifications about this bug go to: https://bugs.launchpad.net/ubuntu/+source/ejabberd/+bug/1840902/+subscriptions -- Mailing list: https://launchpad.net/~touch-packages Post to : touch-packages@lists.launchpad.net Unsubscribe : https://launchpad.net/~touch-packages More help : https://help.launchpad.net/ListHelp
[Touch-packages] [Bug 1840902] Re: ejabberd fails incoming connections with "Failed to secure c2s connection: TLS failed: client renegotiations forbidden"
*** This bug is a duplicate of bug 1832933 *** https://bugs.launchpad.net/bugs/1832933 I'm pretty sure this is a duplicate and was fixed before. Let me try to find the actual relevant package. Possibly it may need a rebuild / publish in the security pocket, if it was only published in updates. ** Changed in: openssl (Ubuntu) Status: New => Invalid ** Changed in: openssl (Ubuntu Bionic) Status: New => Invalid -- You received this bug notification because you are a member of Ubuntu Touch seeded packages, which is subscribed to openssl in Ubuntu. https://bugs.launchpad.net/bugs/1840902 Title: ejabberd fails incoming connections with "Failed to secure c2s connection: TLS failed: client renegotiations forbidden" Status in ejabberd package in Ubuntu: New Status in openssl package in Ubuntu: Invalid Status in ejabberd source package in Bionic: New Status in openssl source package in Bionic: Invalid Bug description: ejabberd 18.01-2 on Bionic. Bad: openssl/libssl1.1 1.1.1-1ubuntu2.1~18.04.4 Good: openssl/libssl1.1 1.1.0g-2ubuntu4.3 This hit the Bionic security pocket yesterday, so everyone who uses unattended-upgrades for security only (which is the default) will have received this overnight. Workaround: downgrade openssl/libssl1.1 to 1.1.0g-2ubuntu4.3 using old builds that are available from https://launchpad.net/ubuntu/+source/openssl/1.1.0g-2ubuntu4.3 (follow the architecture link eg. "amd64") The error logged by ejabberd is: 2019-08-21 06:52:28.402 [warning] <0.539.0>@ejabberd_c2s:process_terminated:290 (tls|<0.539.0>) Failed to secure c2s connection: TLS failed: client renegotiations forbidden To manage notifications about this bug go to: https://bugs.launchpad.net/ubuntu/+source/ejabberd/+bug/1840902/+subscriptions -- Mailing list: https://launchpad.net/~touch-packages Post to : touch-packages@lists.launchpad.net Unsubscribe : https://launchpad.net/~touch-packages More help : https://help.launchpad.net/ListHelp
