Devuan bug report logs - #270
unable to connect using TLSv1.2.

Package: mariadb-client; Maintainer for mariadb-client is (unknown); Source for mariadb-client is src:mariadb-10.5.

Reported by: Thomas Groman <tgrom.automail@nuegia.net>

Date: Sun, 16 Dec 2018 04:03:01 UTC

Severity: normal

Tags: debian

Done: Mark Hindley <mark@hindley.org.uk>

Forwarded to https://bugs.debian.org/921151

Reply or subscribe to this bug.

Toggle useless messages

View this report as an mbox folder, status mbox, maintainer mbox


Report forwarded to devuan-bugs@lists.dyne.org, owner@bugs.devuan.org:
bug#270; Package mariadb-client. (full text, mbox, link).


Acknowledgement sent to Thomas Groman <tgrom.automail@nuegia.net>:
New bug report received and forwarded. Copy sent to owner@bugs.devuan.org.

Your message specified a Severity: in the pseudo-header, but the severity value important was not recognised. The default severity normal is being used instead. The recognised values are: critical, grave, normal, minor, wishlist.

(full text, mbox, link).


Message #5 received at submit@bugs.devuan.org (full text, mbox, reply):

From: Thomas Groman <tgrom.automail@nuegia.net>
To: Devuan Bug Tracking System <submit@bugs.devuan.org>
Subject: unable to connect using TLSv1.2.
Date: Sat, 15 Dec 2018 19:53:44 -0800
Package: mariadb-client
Version: 10.1.37-0+deb9u1
Severity: important



-- System Information:
Distributor ID:	Devuan
Description:	Devuan GNU/Linux 2.0 (ascii)
Release:	2.0
Codename:	ascii

Architecture: x86_64

Kernel: Linux 4.9.0-8-amd64 (SMP w/4 CPU cores)
Locale: LANG=en_US.UTF-8, LC_CTYPE=en_US.UTF-8 (charmap=UTF-8)
Shell: /bin/sh linked to /bin/dash
Init: sysvinit (via /sbin/init)

Versions of packages mariadb-client depends on:
ii  mariadb-client-10.1  10.1.37-0+deb9u1

mariadb-client recommends no packages.

mariadb-client suggests no packages.

-- no debconf information

Mariadb-client is unable to negotiate to TLSv1.2. I have tested this
with server versions: 10.1.37-MariaDB Gentoo Linux mariadb-10.1.37
10.1.34-MariaDB Gentoo Linux mariadb-10.1.34
. It should be noted that only the client version:
Ver 15.1 Distrib 10.1.37-MariaDB, for debian-linux-gnu (x86_64) using
readline 5.2 is unable to connect to the servers listed previously when
TLSv1.2 is enforced. However clients on other operating systems tested:
Ver 15.1 Distrib 10.1.34-MariaDB, for Linux (x86_64) using readline 7.0
Ver 15.1 Distrib 10.1.37-MariaDB, for Linux (x86_64) using readline 7.0
are able to connect just fine. Upon further inspection, looking at
packet traces with WireShark it appears that the Debian client is only
attempting to negotiate a connection with TLSv1.1, which is blacklisted
while the Gentoo clients are able to negotiate at TLSv1.2. The Debian
client fails and prints "ERROR 2026 (HY000): SSL connection error:
unknown error number" to stdout.


Added tag(s) debian. Request was from Mark Hindley <mark@hindley.org.uk> to control@bugs.devuan.org. (Thu, 19 Jan 2023 18:50:01 GMT) (full text, mbox, link).


Set bug forwarded-to-address to 'https://bugs.debian.org/921151'. Request was from Mark Hindley <mark@hindley.org.uk> to control@bugs.devuan.org. (Thu, 19 Jan 2023 18:50:01 GMT) (full text, mbox, link).


Reply sent to Mark Hindley <mark@hindley.org.uk>:
You have taken responsibility. (Thu, 19 Jan 2023 18:58:01 GMT) (full text, mbox, link).


Notification sent to Thomas Groman <tgrom.automail@nuegia.net>:
bug acknowledged by developer. (Thu, 19 Jan 2023 18:58:03 GMT) (full text, mbox, link).


Message #14 received at 270-done@bugs.devuan.org (full text, mbox, reply):

From: Mark Hindley <mark@hindley.org.uk>
To: 270-done@bugs.devuan.org
Subject: Fixed in Debian #921151
Date: Thu, 19 Jan 2023 18:56:43 +0000
Version:

Send a report that this bug log contains spam.


Devuan BTS -- Powered by Debian bug tracking system
Copyright (C) 1999 Darren O. Benham,
1997,2003 nCipher Corporation Ltd, 1994-97 Ian Jackson,
2005-2017 Don Armstrong, and many other contributors.

Devuan Bugs Owner <owner@bugs.devuan.org>.
Last modified: Thu Mar 28 14:48:53 2024;