Bug 1327919 - curl and libcurl can not access to HTTPS server which allows only TLS v1.1 and TLS v1.2
Summary: curl and libcurl can not access to HTTPS server which allows only TLS v1.1 an...
Keywords:
Status: CLOSED DUPLICATE of bug 1289205
Alias: None
Product: Red Hat Enterprise Linux 6
Classification: Red Hat
Component: curl
Version: 6.9
Hardware: Unspecified
OS: Unspecified
unspecified
unspecified
Target Milestone: rc
: ---
Assignee: Kamil Dudka
QA Contact: BaseOS QE Security Team
URL:
Whiteboard:
Depends On:
Blocks:
TreeView+ depends on / blocked
 
Reported: 2016-04-18 00:23 UTC by MATSUDA Daiki
Modified: 2016-04-18 06:32 UTC (History)
0 users

Fixed In Version:
Doc Type: Bug Fix
Doc Text:
Clone Of:
Environment:
Last Closed: 2016-04-18 06:32:15 UTC
Target Upstream Version:

Attachments (Terms of Use)
curl-7.19.7-46-nss_ssl_default_range_fix.patch (377 bytes, patch)
2016-04-18 00:23 UTC, MATSUDA Daiki 		no flags Details | Diff
View All Add an attachment (proposed patch, testcase, etc.)

Description MATSUDA Daiki 2016-04-18 00:23:26 UTC 
Created attachment 1148092 [details]
curl-7.19.7-46-nss_ssl_default_range_fix.patch

Description of problem:
curl and libcurl can not access to HTTPS server which allows only TLS v1.1 and TLS v1.2. Because RHEL's implementation for nss is not enough.

Version-Release number of selected component (if applicable):
7.19.7-46.AXS4

Steps to Reproduce:
1. Create a https server which allows TLS v1.1 or TLS v1.2, or both.
2. curl https://<target server>
3. get "SSL connection error"

In my research, RHEL's fix is not enough for NSS.
So, I attached the patch and test is completed.
Comment 2 Kamil Dudka 2016-04-18 06:32:15 UTC 
You need to update to curl-7.19.7-50.el6 and nss-3.19.1-6.el6 for this to work.
See bug #1289205 and bug #1272504 for details.

*** This bug has been marked as a duplicate of bug 1289205 ***
Note You need to log in before you can comment on or make changes to this bug.