Ubuntu
openssl package

Postfix/openssl not accepting Signature Algorithm: sha512WithRSAEncryption

Bug #1055773 reported by Hadmut Danisch on 2012-09-24

This bug affects 1 person

Affects		Status	Importance	Assigned to	Milestone
	openssl (Ubuntu)	Invalid	Undecided	Unassigned

Bug Description

Hi,

since we recently upgraded a mail server to latest ubuntu packages the mailserver does not accept certificates recently generated with openssl anymore.

When trying to connect with SMTP-TLS and client-cert, the server aborts and logs to mail.log:

Sep 24 22:40:37 mail postfix/smtpd[17022]: warning: TLS library problem: 17022:error:0D0C50A1:asn1 encoding routines:ASN1_item_verify:unknown message digest algorithm:a_verify.c:146:

It works with older certificates using
Signature Algorithm: sha1WithRSAEncryption
but not anymore with newer ones using
Signature Algorithm: sha512WithRSAEncryption

regards

ProblemType: Bug
DistroRelease: Ubuntu 10.04
Package: libssl0.9.8 0.9.8k-7ubuntu8.13
ProcVersionSignature: Ubuntu 2.6.32-42.95-generic-pae 2.6.32.59+drm33.24
Uname: Linux 2.6.32-42-generic-pae i686
Architecture: i386
Date: Mon Sep 24 22:42:25 2012
InstallationMedia: Ubuntu-Server 10.04.1 LTS "Lucid Lynx" - Release i386 (20100816.2)
ProcEnviron:
LANG=en_US.UTF-8
SHELL=/usr/bin/tcsh
SourcePackage: openssl

Tags:

Revision history for this message

Hadmut Danisch (hadmut) wrote on 2012-09-24:

Dependencies.txt Edit (537 bytes, text/plain; charset="utf-8")

Revision history for this message

dino99 (9d9) wrote on 2015-12-24:

That version is no more supported; and backport is not expected as its not a 'security' problem

Changed in openssl (Ubuntu):
status:	New → Invalid

Report a bug

This report contains Public information

Everyone can see this information.

You are

Subscribing...

Edit bug mail

Other bug subscribers

Bug attachments

Dependencies.txt Edit

Add attachment

Remote bug watches

Bug watches keep track of this bug in other bug trackers.

Ubuntuopenssl package