openssl in 20.04 can't connect to site that was fine in 19.10 and is fine in Chrome and Firefox
Affects | Status | Importance | Assigned to | Milestone | |
---|---|---|---|---|---|
OpenSSL |
Fix Released
|
Unknown
|
|||
openssl (Ubuntu) |
Invalid
|
Low
|
Unassigned |
Bug Description
openssl in Ubuntu 20.04 (focal) refuses to connect to a web site that openssl in Ubuntu 19.10 (eoan), Chrome, and Firefox are all happy to connect to.
Reproduce with: `curl -v https:/
or: `openssl s_client -connect www.toodledo.
or: `python3 -c 'import requests; requests.get("https:/
or: `wget https:/
These worked in Ubuntu 19.10 and don't work in 20.04.
I've tried all sorts of things to debug this further and I've just run into walls. I hope someone who understands more about this stuff will be able to figure it out.
ProblemType: Bug
DistroRelease: Ubuntu 20.04
Package: openssl 1.1.1d-2ubuntu3
ProcVersionSign
Uname: Linux 5.4.0-14-generic x86_64
ApportVersion: 2.20.11-0ubuntu18
Architecture: amd64
CurrentDesktop: ubuntu:GNOME
Date: Tue Feb 25 13:01:22 2020
InstallationDate: Installed on 2019-08-16 (192 days ago)
InstallationMedia: Ubuntu 19.04 "Disco Dingo" - Release amd64 (20190416)
SourcePackage: openssl
UpgradeStatus: Upgraded to focal on 2020-01-31 (25 days ago)
Changed in openssl: | |
status: | Unknown → Fix Released |
Example output:
jik@jik-x1:~$ curl -v https:/ /www.toodledo. com/ 52.175: 443... certs/ca- certificates. crt ssl3_read_ bytes:sslv3 alert handshake failure ssl3_read_ bytes:sslv3 alert handshake failure
* Trying 146.20.
* TCP_NODELAY set
* Connected to www.toodledo.com (146.20.52.175) port 443 (#0)
* ALPN, offering h2
* ALPN, offering http/1.1
* successfully set certificate verify locations:
* CAfile: /etc/ssl/
CApath: /etc/ssl/certs
* TLSv1.3 (OUT), TLS handshake, Client hello (1):
* TLSv1.3 (IN), TLS alert, handshake failure (552):
* error:14094410:SSL routines:
* Closing connection 0
curl: (35) error:14094410:SSL routines: