Date: Sun, 5 Nov 2023 20:34:57 -0500 From: Paul Procacci <pprocacci@gmail.com> To: iio7@tutanota.com Cc: Freebsd Questions <freebsd-questions@freebsd.org> Subject: Re: Openssl errors on FreeBSD Message-ID: <CAFbbPuiPGYoDX33Gu1qkGH=GYw9NgcFyNq4PXJDKYpE-SLjVpw@mail.gmail.com> In-Reply-To: <NiX8klV--3-9@tutanota.com> References: <NiX8klV--3-9@tutanota.com>
next in thread | previous in thread | raw e-mail | index | archive | help
--00000000000042ad9c060971dd53 Content-Type: text/plain; charset="UTF-8" Content-Transfer-Encoding: quoted-printable On Sun, Nov 5, 2023 at 8:03=E2=80=AFPM <iio7@tutanota.com> wrote: > Hi, > > I have four machines in my office, 2 FreeBSD boxes, 1 OpenBSD box and 1 > Linux box. On my FreeBSD boxes I get openssl read errors on some differen= t > domains, such as: > > $ curl -O https://www.unixsheikh.com/includes/files/the-biggest-myths.pdf > % Total % Received % Xferd Average Speed Time Time Time > Current > Dload Upload Total Spent Left > Speed > 12 763k 12 98139 0 0 377k 0 0:00:02 --:--:-- 0:00:02 > 378k > curl: (56) OpenSSL SSL_read: OpenSSL/1.1.1t: error:1408F119:SSL > routines:ssl3_get_record:decryption failed or bad record mac, errno 0 > > I get the same with wget. > > I also have problems getting email and using SFTP: > > Email: > > ** IMAP error on mail.example.com: stream error > ** IMAP connection broken > > SFTP: > > Status: Connecting to www.example. <http://www545.your-server.de>com... > Status: Using username "foo". > Command: Pass: **************** > Error: FATAL ERROR: Incorrect MAC received on packet > Error: Could not connect to server > Status: Waiting to retry... > > This is only a problem on the two FreeBSD boxes, not on the OpenBSD or th= e > Linux box. All connected to the same network. The two FreeBSD boxes > runs 13.2-RELEASE-p4. > > Is this a problem with openssl on FreeBSD or what am I looking at here? > Kind regards > > > This has nothing to do with FreeBSD and everything to do with the openssl library. This error isn't present when I attempt to reproduce it here. My version of openssl is: OpenSSL 1.1.1t-freebsd 7 Feb 2023 What version are you attempting this with? ~Paul --=20 __________________ :(){ :|:& };: --00000000000042ad9c060971dd53 Content-Type: text/html; charset="UTF-8" Content-Transfer-Encoding: quoted-printable <div dir=3D"ltr"><div><div dir=3D"ltr"><br></div><br><div class=3D"gmail_qu= ote"><div dir=3D"ltr" class=3D"gmail_attr">On Sun, Nov 5, 2023 at 8:03=E2= =80=AFPM <<a href=3D"mailto:iio7@tutanota.com">iio7@tutanota.com</a>>= wrote:<br></div><blockquote class=3D"gmail_quote" style=3D"margin:0px 0px = 0px 0.8ex;border-left:1px solid rgb(204,204,204);padding-left:1ex">Hi,<br> <br> I have four machines in my office, 2 FreeBSD boxes, 1 OpenBSD box and 1 Lin= ux box. On my FreeBSD boxes I get openssl read errors on some different dom= ains, such as:<br> <br> $ curl -O <a href=3D"https://www.unixsheikh.com/includes/files/the-biggest-= myths.pdf" rel=3D"noreferrer" target=3D"_blank">https://www.unixsheikh.com/= includes/files/the-biggest-myths.pdf</a><br> =C2=A0 % Total=C2=A0=C2=A0=C2=A0 % Received % Xferd=C2=A0 Average Speed=C2= =A0=C2=A0 Time=C2=A0=C2=A0=C2=A0 Time=C2=A0=C2=A0=C2=A0=C2=A0 Time=C2=A0 Cu= rrent<br> =C2=A0=C2=A0=C2=A0=C2=A0=C2=A0=C2=A0=C2=A0=C2=A0=C2=A0=C2=A0=C2=A0=C2=A0=C2= =A0=C2=A0=C2=A0=C2=A0=C2=A0=C2=A0=C2=A0=C2=A0=C2=A0=C2=A0=C2=A0=C2=A0=C2=A0= =C2=A0=C2=A0=C2=A0=C2=A0=C2=A0=C2=A0=C2=A0 Dload=C2=A0 Upload=C2=A0=C2=A0 T= otal=C2=A0=C2=A0 Spent=C2=A0=C2=A0=C2=A0 Left=C2=A0 Speed<br> 12=C2=A0 763k=C2=A0=C2=A0 12 98139=C2=A0=C2=A0=C2=A0 0=C2=A0=C2=A0=C2=A0=C2= =A0 0=C2=A0=C2=A0 377k=C2=A0=C2=A0=C2=A0=C2=A0=C2=A0 0=C2=A0 0:00:02 --:--:= --=C2=A0 0:00:02=C2=A0 378k<br> curl: (56) OpenSSL SSL_read: OpenSSL/1.1.1t: error:1408F119:SSL routines:ss= l3_get_record:decryption failed or bad record mac, errno 0<br> <br> I get the same with wget.<br> <br> I also have problems getting email and using SFTP:<br>; <br> Email:<br> <br> ** IMAP error on <a href=3D"http://mail.example.com" rel=3D"noreferrer" tar= get=3D"_blank">mail.example.com</a>: stream error<br> ** IMAP connection broken<br> <br> SFTP:<br>; <br> Status: Connecting to www.example. <<a href=3D"http://www545.your-server= .de" rel=3D"noreferrer" target=3D"_blank">http://www545.your-server.de</a>&= gt;com...<br> Status: Using username "foo".<br> Command:=C2=A0=C2=A0=C2=A0=C2=A0=C2=A0=C2=A0=C2=A0 Pass: ****************<b= r> Error:=C2=A0 FATAL ERROR: Incorrect MAC received on packet<br> Error:=C2=A0 Could not connect to server<br> Status: Waiting to retry...<br> <br> This is only a problem on the two FreeBSD boxes, not on the OpenBSD or the = Linux box. All connected to the same network. The two FreeBSD boxes runs=C2= =A013.2-RELEASE-p4.<br> <br> Is this a problem with openssl on FreeBSD or what am I looking at here?<br> Kind regards<br> <br> <br> </blockquote></div><br clear=3D"all"></div><div>This has nothing to do with= FreeBSD and everything to do with the openssl library.</div><div>This erro= r isn't present when I attempt to reproduce it here.</div><div>My versi= on of openssl is:=C2=A0 OpenSSL 1.1.1t-freebsd =C2=A07 Feb 2023</div><div>W= hat version are you attempting this with?<br></div><div><br></div><div>~Pau= l<br></div><br><div><span class=3D"gmail_signature_prefix">-- </span><br><d= iv dir=3D"ltr" class=3D"gmail_signature">__________________<br><br>:(){ :|:= & };:</div></div></div> --00000000000042ad9c060971dd53--
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?CAFbbPuiPGYoDX33Gu1qkGH=GYw9NgcFyNq4PXJDKYpE-SLjVpw>