Bug 1342332
Summary: | upgrading nss to 3.24 prevents httpd from starting with "SSL Library Error: -8187 Security library: invalid argument" | ||
---|---|---|---|
Product: | [Fedora] Fedora | Reporter: | Lonni J Friedman <netllama> |
Component: | nss | Assignee: | Elio Maldonado Batiz <emaldona> |
Status: | CLOSED DUPLICATE | QA Contact: | Fedora Extras Quality Assurance <extras-qa> |
Severity: | high | Docs Contact: | |
Priority: | unspecified | ||
Version: | 23 | CC: | baumanmo, emaldona, enrique.bonet, kdudka, kengert, netllama, ngaywood |
Target Milestone: | --- | ||
Target Release: | --- | ||
Hardware: | x86_64 | ||
OS: | Linux | ||
Whiteboard: | |||
Fixed In Version: | Doc Type: | If docs needed, set a value | |
Doc Text: | Story Points: | --- | |
Clone Of: | Environment: | ||
Last Closed: | 2016-06-04 23:10:26 UTC | Type: | Bug |
Regression: | --- | Mount Type: | --- |
Documentation: | --- | CRM: | |
Verified Versions: | Category: | --- | |
oVirt Team: | --- | RHEL 7.3 requirements from Atomic Host: | |
Cloudforms Team: | --- | Target Upstream Version: | |
Embargoed: |
Description
Lonni J Friedman
2016-06-03 02:43:25 UTC
I'm seeing this as well. Also effects LDAP connections and so user logins fail. Two similar systems: tungir ~ # rpm -q nss nss-3.23.0-1.0.fc23.x86_64 tungir ~ # ldapsearch -x -ZZZ -LLL uid=ngaywood dn dn: uid=ngaywood,ou=People,dc=une,dc=edu,dc=au hopper ~ # rpm -q nss nss-3.24.0-1.1.fc23.x86_64 hopper ~ # ldapsearch -x -ZZZ -LLL uid=ngaywood dn ldap_start_tls: Connect error (-11) Downgrading nss also fixed my problem. It might be fixed in nss-3.24.0-1.2.fc23 http://koji.fedoraproject.org/koji/buildinfo?buildID=770185 Changelog * Thu Jun 02 2016 Elio Maldonado <emaldona> - 3.24.0-1.2 - Allow application requests to disable SSL v2 to succeed - Resolves: Bug 1342158 - nss-3.24 does no longer support ssl V2, installation of IPA fails because nss init fails Yes, confirm that nss-3.24.0-1.2.fc23 fixes it for me: hopper ~ # rpm -q nss nss-3.24.0-1.1.fc23.x86_64 hopper ~ # ldapsearch -x -ZZZ -LLL uid=ngaywood dn ldap_start_tls: Connect error (-11) hopper ~ # dnf --enablerepo=updates-testing update nss [snip] hopper ~ # rpm -q nss nss-3.24.0-1.2.fc23.x86_64 hopper ~ # ldapsearch -x -ZZZ -LLL uid=ngaywood dn dn: uid=ngaywood,ou=People,dc=une,dc=edu,dc=au duplicate of bug 1342158 confirmed, fixed with "dnf --enablerepo=updates-testing update nss". thanks @norman! *** This bug has been marked as a duplicate of bug 1342158 *** |