Skip Menu |

This queue is for tickets about the IO-Socket-SSL CPAN distribution.

Report information
The Basics
Id: 83437
Status: resolved
Priority: 0/
Queue: IO-Socket-SSL
People
Owner: Nobody in particular
Requestors: sri [...] cpan.org
Cc:
AdminCc:
Bug Information
Severity: (no value)
Broken in: 1.84
Fixed in: (no value)

History Show all quoted text
  Mon Feb 18 19:56:33 2013 sri [...] cpan.org - Ticket created
Subject: Client side SNI broken on OS X
Hi, Looks like the new version check in IO::Socket::SSL 1.84 has broken client side SNI support on OS X (Mountain Lion), which ships with OpenSSL 0.9.8r, and which does support SNI. In fact, it used to work just fine with older versions of IO::Socket::SSL. Cheers, Sebastian Riedel
  Tue Feb 19 02:30:10 2013 Steffen_Ullrich [...] genua.de - Correspondence added
On Mon Feb 18 19:56:33 2013, SRI wrote: Show quoted text
> Hi, > > Looks like the new version check in IO::Socket::SSL 1.84 has broken > client side SNI support on > OS X (Mountain Lion), which ships with OpenSSL 0.9.8r, and which does > support SNI. In fact, it > used to work just fine with older versions of IO::Socket::SSL.
Hi Sebastian, I had to disable client side SNI support for anything below 1.0.0. While the majority if sites work with SNI in 0.9.8, there are some sites like www.greencart.in, which are broken even with the latest 0.9.8y. See also the Changelog: | v1.84 2013.02.15 | - disabled client side SNI for openssl version < 1.0.0 because of RT#83289 Unfortunatly there is no openssl bug I might point to, it looks like they just fixed the problem w/o even realizing that there was one. Cheers, Steffen
  Tue Feb 19 02:30:11 2013 The RT System itself - Status changed from 'new' to 'open'
  Tue Mar 05 01:59:29 2013 Steffen_Ullrich [...] genua.de - Correspondence added
Request closed, as feature had to be disabled because of bug in openssl
  Tue Mar 05 01:59:30 2013 Steffen_Ullrich [...] genua.de - Status changed from 'open' to 'resolved'