search cancel

Linux machine can't curl to cdn.redhat.com using TLSv1.2

book

Article ID: 175317

calendar_today

Updated On:

Products

Advanced Secure Gateway Software - ASG ProxySG Software - SGOS

Issue/Introduction

When user using Redhat Linux machine to curl to cdn.redhat.com using TLSv1.2, user is not able to connect to the server correctly.

However, when TLSv1.1 is used, the Linux machine connection to the server correctly.

From packet capture, found SSL Decode Error.

Environment

SGOS 6.6.5.9

Cause

This is caused due to lack of support for new extension introduced in TLSv1.2, which is called signature_algorithms.

 

Resolution

This issue was reported as Bug 253609 and resolved from SGOS 6.6.5.14 and later.