[Bug 213210] security/libressl & security/ca_root_nss: root certificate verification fails
bugzilla-noreply at freebsd.org
bugzilla-noreply at freebsd.org
Tue Oct 4 20:45:12 UTC 2016
https://bugs.freebsd.org/bugzilla/show_bug.cgi?id=213210
Bug ID: 213210
Summary: security/libressl & security/ca_root_nss: root
certificate verification fails
Product: Ports & Packages
Version: Latest
Hardware: Any
OS: Any
Status: New
Severity: Affects Some People
Priority: ---
Component: Individual Port(s)
Assignee: freebsd-ports-bugs at FreeBSD.org
Reporter: gudfitz at gmail.com
CC: brnrd at freebsd.org, ports-secteam at FreeBSD.org
CC: brnrd at freebsd.org, ports-secteam at FreeBSD.org
Created attachment 175427
--> https://bugs.freebsd.org/bugzilla/attachment.cgi?id=175427&action=edit
s_client logs
LibreSSL fails to verify certain root certificates (i.e. GeoTrust) when
security/ca_root_nss is installed. This issue only appeared after
security/libressl was updated to 2.4.3. The problem occurs whether or not
-CAfile is added to the command line.
Steps to replicate:
1) Install security/libressl and security/ca_root_nss from head ports tree.
2) Run /usr/local/bin/openssl s_client -connect encrypted.google.com:443
--
You are receiving this mail because:
You are the assignee for the bug.
More information about the freebsd-ports-bugs
mailing list