Comment 39 for bug 965371

In Ubuntu 11.10, Evernote works correctly in Wine. In Ubuntu 12.04, it fails to sync because of this bug:

err:wininet:NETCON_secure_connect SSL_connect failed: 12157

According to <https://groups.google.com/d/msg/mailing.postfix.users/75pH1hGb1P8/bw_P6V5U_boJ>:

"The OpenSSL API does not provide an interface to allow older programs to disable new protocol versions defined in later versions of the API. Therefore, to disable TLS 1.1 or 1.2 one has to add code that uses the new constants introduced with OpenSSL 1.0.1." The author goes on to provide a patch to Postfix, but I doubt it would be feasible to patch Wine for this bug.

There is apparently no way to disable TLS or any protocols in /etc/ssl/openssl.cnf. I can't find any information about disabling or controlling such features in Wine.

Apparently users such as myself have no recourse, other than running a virtual machine for a single app. Since the app in question works fine on the previous version of Ubuntu, that seems quite silly. Downgrading OpenSSL seems unwise, if not totally impractical (perhaps requiring recompiling all software that uses it).

This is very poor, especially for an LTS release. Such a glaring regression deserves more than "Medium" priority, even if it's not Ubuntu's fault per se. Ubuntu, OpenSSL, and all developers would be wise to follow Linus's advice: "Don't break userspace!" Even though OpenSSL may be adhering to the standard and exposing bugs in proprietary implementations, the end result is still broken FOSS software, while proprietary software continues working. Bugs like this deserve high priority.