Excerpts from chrone's message of Mon Apr 30 09:34:18 UTC 2012:
> i'm having the same problem here after upgrade from 11.10, my web server
> could not set email using curl and google mail smtp.
>
> i guess the culprit is either between php5-curl, curl, and openssl. :(
>
> is there a way to downgr
downgraded to openssl 1.0.0e-2ubuntu4.5 didn't solve the problem too. :(
--
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubuntu.
https://bugs.launchpad.net/bugs/592442
Title:
fopen fails on some SSL urls
To manage notifications about this
i'm having the same problem here after upgrade from 11.10, my web server
could not set email using curl and google mail smtp.
i guess the culprit is either between php5-curl, curl, and openssl. :(
is there a way to downgrade each curl and openssl version but still
running on ubuntu 12.04 until th
Anders, I'm not entirely sure that is the same issue. I've tried an
affected openssl s_client on a few of the other noted servers from other
comments on the bug, and they are not failing. That said, the original
problem with the ucdavis server does not happen anymore for me on Ubuntu
12.04. I think
Seems like this issue is tracked in #965371 for Precise.
--
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubuntu.
https://bugs.launchpad.net/bugs/592442
Title:
fopen fails on some SSL urls
To manage notifications about this bug go to:
https
I'm seeing this issue on 12.04 as well.
Just for completeness I've tested with the same script on the latest
10.04, 10.10, 11.04, 11.10 and 12.04.
The script I'm using is:
https://graph.facebook.com/19292868552";;
$fp = fopen($ufurl, 'r');
$data = fread($fp, 1);
var_dump($data);
?>
Results:
** Branch linked: lp:ubuntu/php5
--
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubuntu.
https://bugs.launchpad.net/bugs/592442
Title:
fopen fails on some SSL urls
To manage notifications about this bug go to:
https://bugs.launchpad.net/ph
Using
PHP 5.3.6-13ubuntu3.2 with Suhosin-Patch (cli) (built: Oct 13 2011 23:19:13)
Copyright (c) 1997-2011 The PHP Group
Zend Engine v2.3.0, Copyright (c) 1998-2011 Zend Technologies
I can connect via cli
$openssl s_client -host www.gvmax.com -port 443
however PHP gives me the
PHP Warning: fi
@Clint, thanks for the test. I've created another bug
https://bugs.launchpad.net/ubuntu/+source/openssl/+bug/899464
--
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubuntu.
https://bugs.launchpad.net/bugs/592442
Title:
fopen fails on some S
Excerpts from Finjon Kiang's message of Fri Dec 02 15:28:56 UTC 2011:
> Three environments:
> # PHP Version 5.3.5-1ubuntu7.3
> Suhosin Patch 0.9.10
> Apache/2.2.17 (Ubuntu)
> OpenSSL 0.9.8o 01 Jun 2010
>
> $ uname -a
> Linux xxx #50-Ubuntu SMP Mon Sep 12 21:51:23 UTC 2011 x86_64 x86_64 x86_64
> G
Three environments:
# PHP Version 5.3.5-1ubuntu7.3
Suhosin Patch 0.9.10
Apache/2.2.17 (Ubuntu)
OpenSSL 0.9.8o 01 Jun 2010
$ uname -a
Linux xxx #50-Ubuntu SMP Mon Sep 12 21:51:23 UTC 2011 x86_64 x86_64 x86_64
GNU/Linux
$ openssl s_client -host aquarius.neweb.com.tw -port 443
CONNECTED(0003)
28
It looked like this bug is still there.
I used the code below to test:
https://aquarius.neweb.com.tw');
Three environments:
# PHP Version 5.3.5-1ubuntu7.3
Suhosin Patch 0.9.10
Apache/2.2.17 (Ubuntu)
OpenSSL 0.9.8o 01 Jun 2010
# PHP Version 5.3.6-13ubuntu3.2
Suhosin Patch 0.9.10
Apache/2.2.20 (Ub
I'm having a Python + SSL problem for certain hosts and I think they are
related. Everything was working fine on 10.04 then I just recently
upgraded to 10.10 and certain https sites don't load using python's
httplib.
Booting off an 11.04 beta 1 livecd:
$ uname -a
Linux ubuntu 2.6.38-7-generic #39
This bug was fixed in the package php5 - 5.3.5-1ubuntu6
---
php5 (5.3.5-1ubuntu6) natty; urgency=low
* debian/patches/fpm-config.patch: Update php-fpm.conf(pool.d/con)
to do initial chdir to / as suggest by Olaf van van der Spek
to detect early problems if php5-fpm needs a w
Steve, thanks for looking into this further.
I've unassigned myself from the SSL portion of this, as I am not really
the best person to address the issue fully.
According to this:
http://www.openssl.org/news/changelog.html
I see where rfc4507bis support was added in 0.9.8e, then (confusingly)
a
** Changed in: openssl (Ubuntu)
Status: In Progress => Confirmed
** Changed in: openssl (Ubuntu)
Assignee: Clint Byrum (clint-fewbar) => (unassigned)
--
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubuntu.
https://bugs.launchpad.n
Okay, as pointed out in an earlier comment, the self-signed certificate
bit is a red-herring.
The failure on maverick looks like it's somehow related to how openssl
is attempting to negotiate RFC4507bis session tickets, as running
openssl s_client with -no_ticket also works; e.g.: openssl s_clien
On Wed, Dec 01, 2010 at 01:25:37AM -, Clint Byrum wrote:
> So initial testing shows that this is actually a problem with OpenSSL,
> or at least, it is OpenSSL refusing to connect to these servers:
>
> (natty-amd64)r...@clint-macbookpro:/home/clint/pkg/php5/bzr/natty-php-ssl-fix#
> openssl s_c
So initial testing shows that this is actually a problem with OpenSSL,
or at least, it is OpenSSL refusing to connect to these servers:
(natty-amd64)r...@clint-macbookpro:/home/clint/pkg/php5/bzr/natty-php-ssl-fix#
openssl s_client -host cas.ucdavis.edu -port 443
CONNECTED(0003)
1787:error:
** Changed in: php5 (Ubuntu)
Status: Confirmed => In Progress
** Changed in: php5 (Ubuntu)
Assignee: (unassigned) => Clint Byrum (clint-fewbar)
--
fopen fails on some SSL urls
https://bugs.launchpad.net/bugs/592442
You received this bug notification because you are a member of Ubuntu
** Also affects: php via
http://bugs.php.net/bug.php?id=52106
Importance: Unknown
Status: Unknown
--
fopen fails on some SSL urls
https://bugs.launchpad.net/bugs/592442
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubuntu.
--
ubu
Arjan,
This is an upstream bug. Please leave a comment here[1]. There has been
no progress (nor ack's) from the php team regarding this bug.
Scott
--
[1] http://bugs.php.net/bug.php?id=52106
--
fopen fails on some SSL urls
https://bugs.launchpad.net/bugs/592442
You received this bug not
I want to add a comment that the bug is available for more servers:
https://server.db.kvk.nl/";; # FAILS
#$ufurl = "https://gmail.com/";;#OK
#$ufurl = "https://cas.ucdavis.edu/login";; #FAILS
$fp = fopen($ufurl, 'r');
$data = fread($fp, 1);
var_dump($data);
?>
output:
PHP War
Scott, thanks for continuing to look into this.
The packet information seems like it would be good information for the
PHP bug.
Seeing as I was able to make it fail on karmic w/ the nightly PHP
snapshot, its not really "karmic vs. lucid" but rather "PHP 5.2.10 vs.
PHP 5.3.2".
--
fopen fails on
An update... I've discovered that the cas.ucdavis.edu machine does not
correctly deal with fragmented IP packets. I thought this might be the
problem but then I went looking for those types of packets and found
none (I'll still try to get that fixed though).
Then I discovered that on the "client h
I've filed a bug report at bugs.php.net[1] and linked to this bug
report.
I'll ask for more details about this specific server. I tried a bunch of
other sites with a similar setup but can't reproduce it elsewhere yet.
Maybe there is a firewall rule that is blocking packets? Seems strange
that it w
Marking Medium importance per Clint.
** Changed in: php5 (Ubuntu)
Importance: Undecided => Medium
--
fopen fails on some SSL urls
https://bugs.launchpad.net/bugs/592442
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubuntu.
--
ubuntu-bugs
It would appear this problem is somewhere upstream. I built the latest
vanilla snapshot of 5.3 on both karmic and maverick and the issue still
persists:
cl...@ubuntu:~/pkg/php5/src/php5.3-201006151430$ sapi/cli/php
../../test_592442.php
now cas.ucdavis.edu...
Warning: fopen(): SSL operation fai
This is strange... on lucid it doesn't even attempt to check for the CA
file. Using the script you provided on a Karmic machine I get the
following:
now cas.ucdavis.edu...
open("/etc/host.conf", O_RDONLY)= 3
open("/etc/resolv.conf", O_RDONLY) = 3
open("/etc/hosts", O_RDONLY|O_CLOEXEC)
Hmm furthermore, I don't think this is a certificate verification
problem, because the manual for the SSL wrapper (which https urls ride
on top of) states that verify_peer defaults to false. If you run this
code with 'strace -e trace=open,stat php .php' you can see that the
ssl certs dir doesn'
** Attachment added: "tcpdump of a php run with two fopen() calls to remote
https servers"
http://launchpadlibrarian.net/50098267/out.dump
--
fopen fails on some SSL urls
https://bugs.launchpad.net/bugs/592442
You received this bug notification because you are a member of Ubuntu
Bugs, which
I noticed that too. The necessary CAs are actually installed on Lucid by
default though (you just have to tell openssl where to look).
Incidentally, wget works fine (without --no-check-certificate):
$ openssl s_client -CApath /etc/ssl/certs -connect cas.ucdavis.edu:443
CONNECTED(0003)
depth=1
The example given returns the same result for me on an up to date
maverick system. I think the problem is just a misleading error message
bubbling up from openssl. s_client does give an error about the self
signed cert:
verify error:num=19:self signed certificate in certificate chain
Full log:
33 matches
Mail list logo
