Ubuntu
openssl package

SSL not working after upgrading OpenSSL FIPS package on Ubuntu 18.04

Asked by Chronus Corp

Hello,

I recently upgrade my openssl and all its dependent libraries from version 1.1.1-1ubuntu2.fips.2.1~18.04.3.1 to 1.1.1-1ubuntu2.fips.2.1~18.04.6.2 on Ubuntu 18.04, after which none of the SSL functionalities are working. I cannot connect to a MySQL server or Redis stunnel via SSL. But I can connect with SSL mode disabled, ensuring that there is nothing wrong with MySQL or Stunnel libraries.

How do I fix these SSL issues? Also, if I create a new server from scratch, and I try to install openssl, it actually installs 1.1.1-1ubuntu2.fips.2.1~18.04.6.2 (I did not run apt-get update). If I cannot fix things in 1.1.1-1ubuntu2.fips.2.1~18.04.6.2, I would atleast like to continue using the 1.1.1-1ubuntu2.fips.2.1~18.04.3.1 version.

How can I fix the SSL issues on 1.1.1-1ubuntu2.fips.2.1~18.04.6.2 or atleast install 1.1.1-1ubuntu2.fips.2.1~18.04.3.1 on new servers?

Question information

Language:
English Edit question
Status:
Answered
For:
Ubuntu openssl Edit question
Assignee:
No assignee Edit question
Last query:
Last reply:
Revision history for this message
Manfred Hampl (m-hampl) said : 		#1

"SSL not working" in what sense? Error messages, or not doing anything, or ...?

I suggest that you create a bug report.

Revision history for this message
Chronus Corp (apolloops) said : 		#2

When I try to connect to MySQL via CLI, I get the below error:

SSL connection error: error:00000001:lib(0):func(0):reason(1)

I am getting similar SSL connection issues with Redis as well.

Revision history for this message
Bernard Stafford (bernard010) said : 		#3

https://packages.ubuntu.com/jammy/bruteforce-salted-openssl
https://askubuntu.com/questions/949119/error-when-starting-redis-server-address-already-in-use

Can you help with this problem?

Provide an answer of your own, or ask Chronus Corp for more information if necessary.

To post a message you must log in.