[Date Prev][Date Next] [Thread Prev][Thread Next] [Date Index] [Thread Index]

Bug#253054: apache-ssl doesn't follow the TLS protocol

Package: apache-ssl
Severity: important
Version: 1.3.31-1

I'm having problems connecting to an apache-ssl server using gnutls. The
gnutls developers tell me this is because apache isn't following the TLS

The example code I'm using can be found at:


The transfer will fail after the whole transfer is done, when the apache
server is closing the connection.

The error is:

*** Error: A TLS packet with unexpected length was received.


-- System Information:
Debian Release: testing/unstable
  APT prefers unstable
  APT policy: (500, 'unstable')
Architecture: i386 (i686)
Kernel: Linux 2.6.4
Locale: LANG=C, LC_CTYPE=pt_PT.UTF-8@euro

Versions of packages apache-ssl depends on:
ii  apache-common               1.3.31-1     Support files for all Apache webse
ii  debconf                     1.4.25       Debian configuration management sy
ii  dpkg                        1.10.22      Package maintenance system for Deb
ii  libc6                       2.3.2.ds1-13 GNU C Library: Shared libraries an
ii  libdb4.2                    4.2.52-16    Berkeley v4.2 Database Libraries [
ii  libexpat1                   1.95.6-8     XML parsing C library - runtime li
ii  libkeynote0                 2.3-10       Decentralized Trust-Management sys
ii  libmagic1                   4.07-2       File type determination library us
ii  libpam0g                    0.76-21      Pluggable Authentication Modules l
ii  libssl0.9.7                 0.9.7d-3     SSL shared libraries
ii  logrotate                   3.7-1        Log rotation utility
ii  mime-support                3.26-1       MIME files 'mime.types' & 'mailcap
ii  openssl                     0.9.7d-3     Secure Socket Layer (SSL) binary a
ii  perl                        5.8.4-2      Larry Wall's Practical Extraction
ii  ssl-cert                    1.0-7        Simple debconf wrapper for openssl

Attachment: signature.asc
Description: This is a digitally signed message part

Reply to: