openssl: [3.0.2] curl: (35) error:03000072:digital envelope routines::decode error with LANG=tr_TR.utf8
This issue was originally reported earlier for Fedora 36 by Turkish users.
With openssl-3.0.2 in Fedora Linux 36 Beta:
$ LANG=tr_TR.utf8 curl -L https://google.com/
curl: (35) error:03000072:digital envelope routines::decode error
Here is some more verbose curl output:
$ LANG=tr_TR.utf8 curl -Lv https://google.com/
* Trying 142.251.12.100:443...
* Connected to google.com (142.251.12.100) port 443 (#0)
* ALPN, offering h2
* ALPN, offering http/1.1
* CAfile: /etc/pki/tls/certs/ca-bundle.crt
* CApath: none
* TLSv1.0 (OUT), TLS header, Certificate Status (22):
* TLSv1.3 (OUT), TLS handshake, Client hello (1):
* TLSv1.2 (IN), TLS header, Certificate Status (22):
* TLSv1.3 (IN), TLS handshake, Server hello (2):
* TLSv1.2 (IN), TLS header, Finished (20):
* TLSv1.2 (IN), TLS header, Supplemental data (23):
* TLSv1.3 (IN), TLS handshake, Encrypted Extensions (8):
* TLSv1.3 (IN), TLS handshake, Certificate (11):
* TLSv1.2 (OUT), TLS header, Unknown (21):
* TLSv1.3 (OUT), TLS alert, bad certificate (554):
* error:03000072:digital envelope routines::decode error
* Closing connection 0
curl: (35) error:03000072:digital envelope routines::decode error
(The original report was for openssl-3.0.0, where it segfaulted instead of giving the above error message.)
Expected results: https to work without any error, like it does with other locales.
About this issue
- Original URL
- State: closed
- Created 2 years ago
- Reactions: 2
- Comments: 42 (37 by maintainers)
Fixed for 3.0 by #18103
Or maybe we want to export it? Hey, everyone who wants locale independent ascii strcasecmp, use OpenSSL even if you do not need crypto!
So for Turkish I suppose uppercase of “camellia128” would be “CAMELLİA-128”.
(Just for the record I tested downgrading Fedora 36 curl from 7.82.0 to 7.79.1, and still get the same error message.)