Bug 601612 - s_server doesn't listen for ipv6 connections
s_server doesn't listen for ipv6 connections
Status: CLOSED ERRATA
Product: Red Hat Enterprise Linux 6
Classification: Red Hat
Component: openssl (Show other bugs)
6.0
All Linux
medium Severity medium
: rc
: ---
Assigned To: Tomas Mraz
Miroslav Vadkerti
:
Depends On:
Blocks: 519903
  Show dependency treegraph
 
Reported: 2010-06-08 06:18 EDT by Miroslav Vadkerti
Modified: 2011-05-19 07:47 EDT (History)
2 users (show)

See Also:
Fixed In Version: openssl-1.0.0-7.el6
Doc Type: Bug Fix
Doc Text:
Story Points: ---
Clone Of:
Environment:
Last Closed: 2011-05-19 07:47:40 EDT
Type: ---
Regression: ---
Mount Type: ---
Documentation: ---
CRM:
Verified Versions:
Category: ---
oVirt Team: ---
RHEL 7.3 requirements from Atomic Host:
Cloudforms Team: ---


Attachments (Terms of Use)

  None (edit)
Description Miroslav Vadkerti 2010-06-08 06:18:05 EDT
Description of problem:
I cannot connect to s_server with s_client using IPv6 address (or host resolved as IPv6 adress)

Version-Release number of selected component (if applicable):
openssl-1.0.0-2.el6

How reproducible:
always

Steps to Reproduce:
Have two IPv6 enabled machines, generate pem for s_server, add server with ipv6 address to /etc/hosts

1. openssl s_server
2. openssl s_client -host server
  
Actual results:
socket: Connection refused
connect:errno=111

Expected results:
Connection successful as with IPv4

Additional info:
Comment 1 Miroslav Vadkerti 2010-06-08 06:19:39 EDT
Proposed blocker as IPv6 is a RHEL6 feature
Comment 2 Tomas Mraz 2010-06-08 06:40:59 EDT
I don't think this is a blocker. Openssl s_server is just a debugging tool for testing interoperability of various TLS clients with the openssl TLS server. It has no ability to listen on two addresses simultaneously. If you configure the server host with IPv6 addresses only (including the loopback) it should work.

The only feasible way how to fix this is to add a new option which would cause it to listen only on a specified address.
Comment 3 Miroslav Vadkerti 2010-06-08 06:48:37 EDT
Proposing for 6.1 according to comment #2
Comment 9 Tomas Mraz 2011-01-24 15:14:00 EST
I've made the s_server to listen on the IPv6 wildcard if available which automatically makes it to accept the IPv4 connections as well.
Comment 13 errata-xmlrpc 2011-05-19 07:47:40 EDT
An advisory has been issued which should help the problem
described in this bug report. This report is therefore being
closed with a resolution of ERRATA. For more information
on therefore solution and/or where to find the updated files,
please follow the link below. You may reopen this bug report
if the solution does not work for you.

http://rhn.redhat.com/errata/RHSA-2011-0677.html

Note You need to log in before you can comment on or make changes to this bug.