Hi. I'm using s6-networking with libressl. Some change between
libressl 3.1 and 3.2 is causing trouble: I get
SSL_ERROR_ILLEGAL_PARAMETER_ALERT in Firefox and
ERR_SSL_PROTOCOL_ERROR in Chromium, with this appearing in the server
log:
s6-tlsd-io: fatal: unable to tls_handshake: handshake failed: error:1404A417:SSL routines:ST_ACCEPT:sslv3 alert illegal parameter
Any ideas? From what I've read, these browser errors usually indicate
the server doesn't allow a new enough TLS protocol to satisfy the
browser. That seems unlikely here, when older software versions work
and only the new ones fail, but maybe it's a conflict between the
defaults of libressl and s6-networking? I noticed libressl 3.2 is
when they enabled TLS 1.3 by default for servers.
Received on Mon Sep 08 2025 - 09:05:07 CEST