Bug 13124

Summary: stunnel in mga4 fails with newer openssl using FIPS
Product: Mageia Reporter: claire robinson <eeeemail>
Component: RPM PackagesAssignee: Mageia Bug Squad <bugsquad>
Status: RESOLVED DUPLICATE QA Contact:
Severity: normal    
Priority: Normal    
Version: 4   
Target Milestone: ---   
Hardware: i586   
OS: Linux   
URL: https://bugs.mageia.org/show_bug.cgi?id=12943
Whiteboard:
Source RPM: stunnel CVE:
Status comment:

Description claire robinson 2014-03-31 13:06:14 CEST 
See also bug 12943 where the issue was discovered.

In mga3 fips is not used and stunnel works but in mga4 fips is used and causes stunnel to fail.

eg.

# stunnel
stunnel 4.56 on i586-mageia-linux-gnu platform
Compiled/running with OpenSSL 1.0.1e 11 Feb 2013
Threading:FORK Sockets:POLL,IPv6 SSL:ENGINE,OCSP,FIPS Auth:LIBWRAP
Reading configuration from file /etc/stunnel/stunnel.conf
FIPS_mode_set: F06D065: error:0F06D065:common libcrypto routines:FIPS_mode_set:fips mode not supported
Line 61: "[pop3s]": Failed to initialize SSL
str_stats: 7 block(s), 126 data byte(s), 406 control byte(s)



It can be worked around by adding 'fips = no' in the top half of 
/etc/stunnel/stunnel.conf




Reproducible: 

Steps to Reproduce:
Comment 1 Manuel Hiebel 2014-04-23 16:45:13 CEST 
looks a dup

*** This bug has been marked as a duplicate of bug 11000 ***

Status: NEW => RESOLVED
Resolution: (none) => DUPLICATE