AIX Open Source

 View Only
Expand all | Collapse all

Curl error (35): SSL connect error for https:// .. /respond.xml [error:0609D09C:digital envelope routines:INT_CTX_NEW:unsupported algorithm]

Steve Munday

Steve MundayFri January 27, 2023 11:51 AM

Sangamesh, Hi, here's the list you requested. # rpm -qa | sort AIX-rpm-7.3.0.2-34.ppc apr-1.7.0-1.ppc apr-util-1.6.1-1.ppc bash-5.1.16-1.ppc bash-doc-5.1.16-1.ppc bzip2-1.0.8-2.ppc ca-certificates-2021.2.52-1.ppc check-0.13.0-1.ppc coreutils-9.0-1.ppc cups-libs-2.2.3-3.ppc curl-7.86.0-1.ppc cyrus-sasl-2.1.28-1.ppc db-5.3.28-1.ppc dbus-1.13.18-1.ppc dnf-4.2.17-64_51.ppc dnf-automatic-4.2.17-64_51.ppc dnf-data-4.2.17-64_51.ppc dnf-plugins-core-4.0.16-64_50.ppc dnf-utils-4.0.16-64_50.ppc emacs-26.3-1.ppc emacs-nox-26.3-1.ppc expat-2.5.0-1.ppc expect-5.42.1-3.ppc gcc-10-2.ppc gcc-cpp-10-2.ppc gcc10-10.3.0-6.ppc gcc10-cpp-10.3.0-6.ppc gdbm-1.19-1.ppc gettext-0.21-2.ppc git-2.38.3-1.ppc git-core-2.38.3-1.ppc git-core-doc-2.38.3-1.noarch glib2-2.56.1-3.ppc gmp-6.2.1-1.ppc gnupg2-2.2.23-1.ppc gnutls-3.7.2-1.ppc gpgme-1.13.1-100.ppc httpd-2.4.54-3.ppc info-6.7-1.ppc iozone-3.429-1.ppc iperf-2.0.13-1.ppc jq-1.6-1.ppc json-c-0.15-2.ppc krb5-libs-1.18.5-2.ppc less-598-1.ppc libassuan-2.5.3-1.ppc libcomps-0.1.11-100.ppc libdnf-0.39.1-64_50.ppc libffi-3.2.1-3.ppc libgcc-10-2.ppc libgcc10-10.3.0-6.ppc libgcrypt-1.9.4-1.ppc libgcrypt-devel-1.9.4-1.ppc libgomp-10-2.ppc libgomp10-10.3.0-6.ppc libgpg-error-1.42-1.ppc libgpg-error-devel-1.42-1.ppc libiconv-1.17-1.ppc libjpeg-9d-1.ppc libksba-1.4.0-1.ppc libmodulemd-1.5.2-100.ppc libmpc-1.2.1-1.ppc libnghttp2-1.46.0-1.ppc libpcap-1.10.0-1.ppc librepo-1.11.0-100.ppc libsmartcols-2.34-100.ppc libsmbclient-4.14.12-1.ppc libsolv-0.7.9-64_50.ppc libssh2-1.10.0-2.ppc libstdc++-10-2.ppc libstdc++10-10.3.0-6.ppc libtasn1-4.16.0-1.ppc libtextstyle-0.21-2.ppc libunistring-0.9.10-1.ppc libxml2-2.9.14-1.ppc libxml2-devel-2.9.14-1.ppc libxml2-python3-2.9.14-1.ppc libxslt-1.1.34-1.ppc libxslt-devel-1.1.34-1.ppc libyaml-0.2.2-1.ppc libzstd-1.4.4-100.ppc logrotate-3.14.0-2.ppc lpar2rrd-agent-7.50-0.ppc lz4-1.9.3-1.ppc mpfr-4.1.0-1.ppc ncurses-6.2-2.ppc net-snmp-5.8-3.ppc net-snmp-utils-5.8-3.ppc nettle-3.7.3-1.ppc npth-1.5-1.ppc oniguruma-6.9.6-1.ppc openldap-2.5.12-1.ppc p11-kit-0.23.22-1.ppc p11-kit-tools-0.23.22-1.ppc pcre-8.44-2.ppc perl-5.34.1-1.ppc pinentry-1.0.0-1.ppc pkg-config-0.29.2-2.ppc popt-1.18-1.ppc pysqlite-2.8.3-2.ppc python-2.7.18-3.ppc python-devel-2.7.18-3.ppc python-iniparse-0.4-1.noarch python-pycurl-7.43.0-1.ppc python-tools-2.7.18-3.ppc python-urlgrabber-3.10.1-1.noarch python3-3.7.12-1.ppc python3-dateutil-2.8.0-1.noarch python3-devel-3.7.12-1.ppc python3-dnf-4.2.17-64_51.ppc python3-dnf-plugins-core-4.0.16-64_50.ppc python3-gpg-1.13.1-100.ppc python3-hawkey-0.39.1-64_50.ppc python3-libcomps-0.1.11-100.ppc python3-libdnf-0.39.1-64_50.ppc python3-librepo-1.11.0-100.ppc python3-six-1.13.0-1.noarch python3-tools-3.7.12-1.ppc readline-8.1-1.ppc rpm-python3-4.15.1-64_2.ppc rsync-3.2.7-1.ppc samba-4.14.12-1.ppc samba-client-4.14.12-1.ppc samba-common-4.14.12-1.ppc samba-devel-4.14.12-1.ppc samba-libs-4.14.12-1.ppc samba-winbind-4.14.12-1.ppc samba-winbind-clients-4.14.12-1.ppc sed-4.8-1.ppc sqlite-3.37.2-1.ppc tcl-8.4.7-3.ppc tk-8.4.7-3.ppc unzip-6.0-3.ppc wget-1.21.2-1.ppc xz-devel-5.2.5-1.ppc xz-libs-5.2.5-1.ppc yum-metadata-parser-1.1.4-2.ppc zchunk-libs-1.1.4-101.ppc zip-3.0-4.ppc zlib-1.2.13-1.ppc #​ ...
  • 1.  Curl error (35): SSL connect error for https:// .. /respond.xml [error:0609D09C:digital envelope routines:INT_CTX_NEW:unsupported algorithm]

    IBM Champion
    Posted Fri January 27, 2023 06:24 AM
    Edited by Steve Munday Fri January 27, 2023 07:50 AM
    Having run a successful dnf update git (CVE remediation) I then ran dnf update libxml2 (CVE remediation) however I got the following error(s).

    2023-01-25T09:17:16Z INFO Dependencies resolved.
    2023-01-25T09:17:16Z INFO =============================================================================================================================================================================================
     Package                                            Architecture                           Version                                      Repository                                      Size
    =============================================================================================================================================================================================
    Upgrading:
     libxml2                                            ppc                                    2.10.3-1                                     AIX_Toolbox                                    4.6 M
     libxml2-devel                                      ppc                                    2.10.3-1                                     AIX_Toolbox                                    678 k
     libxml2-python3                                    ppc                                    2.10.3-1                                     AIX_Toolbox                                    1.1 M
    
    Transaction Summary
    =============================================================================================================================================================================================
    Upgrade  3 Packages
    
    2023-01-25T09:17:16Z INFO Total download size: 6.3 M
    2023-01-25T09:17:20Z INFO Downloading Packages:
    2023-01-25T09:17:20Z DDEBUG Cleaning up.
    2023-01-25T09:17:20Z SUBDEBUG
    Traceback (most recent call last):
      File "/opt/freeware/lib/python3.7/site-packages/dnf/cli/cli.py", line 226, in do_transaction
        self.download_packages(install_pkgs, self.output.progress, total_cb)
      File "/opt/freeware/lib/python3.7/site-packages/dnf/base.py", line 1149, in download_packages
        self._download_remote_payloads(payloads, drpm, progress, callback_total)
      File "/opt/freeware/lib/python3.7/site-packages/dnf/base.py", line 1079, in _download_remote_payloads
        raise dnf.exceptions.DownloadError(errors._irrecoverable)
    dnf.exceptions.DownloadError: Cannot download libxml2/libxml2-2.10.3-1.aix7.1.ppc.rpm: All mirrors were tried​

    I then ran dnf info dnf and got the following "SSL connect errors".

    # dnf info dnf
    AIX generic repository                                                                                                                                       0.0  B/s |   0  B     00:00
    Errors during downloading metadata for repository 'AIX_Toolbox':
      - Curl error (35): SSL connect error for anonymous@public.dhe.ibm.com/aix/freeSoftware/aixtoolbox/RPMS/ppc/repodata/repomd.xml">https://anonymous:anonymous@public.dhe.ibm.com/aix/freeSoftware/aixtoolbox/RPMS/ppc/repodata/repomd.xml [error:0609D09C:digital envelope routines:INT_CTX_NEW:unsupported algorithm]
    Error: Failed to download metadata for repo 'AIX_Toolbox': Cannot download repomd.xml: Cannot download repodata/repomd.xml: All mirrors were tried
    AIX noarch repository                                                                                                                                        0.0  B/s |   0  B     00:00
    Errors during downloading metadata for repository 'AIX_Toolbox_noarch':
      - Curl error (35): SSL connect error for anonymous@public.dhe.ibm.com/aix/freeSoftware/aixtoolbox/RPMS/noarch/repodata/repomd.xml">https://anonymous:anonymous@public.dhe.ibm.com/aix/freeSoftware/aixtoolbox/RPMS/noarch/repodata/repomd.xml [error:0609D09C:digital envelope routines:INT_CTX_NEW:unsupported algorithm]
    Error: Failed to download metadata for repo 'AIX_Toolbox_noarch': Cannot download repomd.xml: Cannot download repodata/repomd.xml: All mirrors were tried
    AIX 7.3 specific repository                                                                                                                                  0.0  B/s |   0  B     00:00
    Errors during downloading metadata for repository 'AIX_Toolbox_73':
      - Curl error (35): SSL connect error for anonymous@public.dhe.ibm.com/aix/freeSoftware/aixtoolbox/RPMS/ppc-7.3/repodata/repomd.xml">https://anonymous:anonymous@public.dhe.ibm.com/aix/freeSoftware/aixtoolbox/RPMS/ppc-7.3/repodata/repomd.xml [error:0609D09C:digital envelope routines:INT_CTX_NEW:unsupported algorithm]
    Error: Failed to download metadata for repo 'AIX_Toolbox_73': Cannot download repomd.xml: Cannot download repodata/repomd.xml: All mirrors were tried
    Ignoring repositories: AIX_Toolbox, AIX_Toolbox_noarch, AIX_Toolbox_73
    Installed Packages
    Name         : dnf
    Version      : 4.2.17
    Release      : 64_51
    Architecture : ppc
    Size         : 9.3 k
    Source       : dnf-4.2.17-64_51.src.rpm
    Repository   : @System
    From repo    : AIX_Toolbox_73
    Summary      : Package manager
    URL          : https://github.com/rpm-software-management/dnf
    License      : GPLv2+ and GPLv2 and GPL
    Description  : Utility that allows users to manage packages on their systems.
                 : It supports RPMs, modules and comps groups & environments.
    ​


    Curl, itself, appears to be "ok" though.

    # curl -vvv anonymous@public.dhe.ibm.com/aix/freeSoftware/aixtoolbox/RPMS/ppc/repodata/repomd.xml
    *   Trying 170.225.126.18:80...
    * Connected to public.dhe.ibm.com (170.225.126.18) port 80 (#0)
    * Server auth using Basic with user 'anonymous'
    > GET /aix/freeSoftware/aixtoolbox/RPMS/ppc/repodata/repomd.xml HTTP/1.1
    > Host: public.dhe.ibm.com
    > Authorization: Basic YW5vbnltb3VzOg==
    > User-Agent: curl/7.86.0
    > Accept: */*
    >
    * Mark bundle as not supporting multiuse
    < HTTP/1.1 200 OK
    < Date: Fri, 27 Jan 2023 10:26:22 GMT
    < Last-Modified: Tue, 24 Jan 2023 16:01:49 GMT
    < ETag: "98b6-aa8-5f304a2205540"
    < Accept-Ranges: bytes
    < Content-Length: 2728
    < Content-Type: application/xml
    <
    <?xml version="1.0" encoding="UTF-8"?>
    <repomd xmlns="http://linux.duke.edu/metadata/repo" xmlns:rpm="http://linux.duke.edu/metadata/rpm">
      <revision>1674574271</revision>
      <data type="primary">
        <checksum type="sha256">6d2528556927ea4301641c07d2e0e89bd609cd3609ce90db0875a968c68562aa</checksum>
        <open-checksum type="sha256">1f4f8d408eaeb23fa776646adbe0bc3f7582f396e2461403f431f49e022abab5</open-checksum>
        <location href="repodata/primary.xml.gz"/>
        <timestamp>1674571834</timestamp>
        <size>782839</size>
        <open-size>20254465</open-size>
      </data>
      <data type="filelists">
        <checksum type="sha256">1cc4f711bd1d1dc85ade472839a9160ccbde33f7eb116b35eb6ecb89f39fb33e</checksum>
        <open-checksum type="sha256">8476869534235193e4f43ddd1ec53ae81feb0777c3a83eef085f9e4897cbd35a</open-checksum>
        <location href="repodata/filelists.xml.gz"/>
        <timestamp>1674571834</timestamp>
        <size>18394630</size>
        <open-size>419656398</open-size>
      </data>
      <data type="other">
        <checksum type="sha256">b75e00c04f3c92c3e7832345afc45bf36129923bb22b4b0cc7bd9fb13d6d4d1a</checksum>
        <open-checksum type="sha256">07cafb0fca1adb038c028553be04eb25ace625a5006505d000eb9ff45d29bbf9</open-checksum>
        <location href="repodata/other.xml.gz"/>
        <timestamp>1674571834</timestamp>
        <size>5265420</size>
        <open-size>154309515</open-size>
      </data>
      <data type="primary_db">
        <checksum type="sha256">eee046ae85bf876d2d14f2d7584ff55265024c0603941209db257ef04a7a99f3</checksum>
        <open-checksum type="sha256">33514e82e024b00084578905faa8d96e705544f49bb815ec51b60fc8c54c84ce</open-checksum>
        <location href="repodata/primary.sqlite.bz2"/>
        <timestamp>1674574387</timestamp>
        <size>3308980</size>
        <open-size>32272384</open-size>
        <database_version>10</database_version>
      </data>
      <data type="filelists_db">
        <checksum type="sha256">18549270faffd8998b8a5f1f2b04c7057674c22bd224200f978656201b892fa9</checksum>
        <open-checksum type="sha256">04ba145b924b89b9a3940d9fea518333725c0f80746c37e2dfa4a13ab8cac132</open-checksum>
        <location href="repodata/filelists.sqlite.bz2"/>
        <timestamp>1674574409</timestamp>
        <size>4453444</size>
        <open-size>131670016</open-size>
        <database_version>10</database_version>
      </data>
      <data type="other_db">
        <checksum type="sha256">56a8b923107cfc9aded9f2f4550f66e1b7973552d0fa503cfdc54ec173c1ee47</checksum>
        <open-checksum type="sha256">8e01d88fb96385ba579101a11cbcfdf221e2f6c6981e254a88c0ed6d6e0d5970</open-checksum>
        <location href="repodata/other.sqlite.bz2"/>
        <timestamp>1674574404</timestamp>
        <size>5091448</size>
        <open-size>125337600</open-size>
        <database_version>10</database_version>
      </data>
    </repomd>
    * Connection #0 to host public.dhe.ibm.com left intact
    #

    System details
    oslevel -s
    7300-00-02-2220
    
    dnf --version
    4.2.17
      Installed: dnf-0:4.2.17-64_51.ppc at Mon Jun 27 17:28:29 EST 2022
      Built    :  at Wed Apr 27 03:13:08 EST 2022
    
    curl --version
    curl 7.86.0 (powerpc-ibm-aix7.1.3.0) libcurl/7.86.0 OpenSSL/1.1.1l zlib/1.2.13 libssh2/1.10.0 nghttp2/1.46.0
    Release-Date: 2022-10-26
    Protocols: dict file ftp ftps gopher gophers http https imap imaps ldap ldaps mqtt pop3 pop3s rtsp scp sftp smb smbs smtp smtps telnet tftp
    Features: alt-svc AsynchDNS GSS-API HSTS HTTP2 HTTPS-proxy IPv6 Kerberos Largefile libz NTLM NTLM_WB SPNEGO SSL threadsafe UnixSockets
    
    lslpp -L | grep -i openss
      openssh.base.client   8.1.102.2105    C     F    Open Secure Shell Commands
      openssh.base.server   8.1.102.2105    C     F    Open Secure Shell Server
      openssh.license       8.1.102.2105    C     F    Open Secure Shell License
      openssh.man.en_US     8.1.102.2105    C     F    Open Secure Shell
      openssh.msg.EN_US     8.1.102.2105    C     F    Open Secure Shell Messages -
      openssh.msg.en_US     8.1.102.2105    C     F    Open Secure Shell Messages -
      openssl.base            1.1.2.1200    CE    F    Open Secure Socket Layer
      openssl.license         1.1.2.1200    C     F    Open Secure Socket License
      openssl.man.en_US       1.1.2.1200    C     F    Open Secure Socket Layer
    ​

    I found the below (same issue) posted in the Power community section
    Power
    Ibm remove preview
    Power
    After upgrading dnf, I encountered following error. Any help is appreciated.$ dnf updateAIX generic repository 0
    View this on Ibm >

    Am I needing to update to the following version of OpenSSL?

      openssh.base.client   8.1.112.1201    C     F    Open Secure Shell Commands
      openssh.base.server   8.1.112.1201    C     F    Open Secure Shell Server
      openssh.license       8.1.112.1201    C     F    Open Secure Shell License
      openssh.man.en_US     8.1.112.1201    C     F    Open Secure Shell
      openssh.msg.EN_US     8.1.112.1201    C     F    Open Secure Shell Messages -
      openssh.msg.en_US     8.1.112.1201    C     F    Open Secure Shell Messages -
      openssl.base            3.0.7.1000    C     F    Open Secure Socket Layer
      openssl.license         3.0.7.1000    C     F    Open Secure Socket License
      openssl.man.en_US       3.0.7.1000    C     F    Open Secure Socket Layer
    ​

    Many thanks, Steve

    ------------------------------
    Steve Munday
    AIX, IBM i, HMC, PowerVM
    ------------------------------


  • 2.  RE: Curl error (35): SSL connect error for https:// .. /respond.xml [error:0609D09C:digital envelope routines:INT_CTX_NEW:unsupported algorithm]

    Posted Fri January 27, 2023 10:44 AM
    Hi Steve,

    I think due to some of the DNF related packages with openssl-1.0.2 and openssl-1.1.1
    Please can provide the list of packages installed ?
    "rpm -qa" output

    ------------------------------
    SANGAMESH
    ------------------------------



  • 3.  RE: Curl error (35): SSL connect error for https:// .. /respond.xml [error:0609D09C:digital envelope routines:INT_CTX_NEW:unsupported algorithm]

    IBM Champion
    Posted Fri January 27, 2023 11:51 AM
    Sangamesh,

    Hi, here's the list you requested.

    # rpm -qa | sort
    AIX-rpm-7.3.0.2-34.ppc
    apr-1.7.0-1.ppc
    apr-util-1.6.1-1.ppc
    bash-5.1.16-1.ppc
    bash-doc-5.1.16-1.ppc
    bzip2-1.0.8-2.ppc
    ca-certificates-2021.2.52-1.ppc
    check-0.13.0-1.ppc
    coreutils-9.0-1.ppc
    cups-libs-2.2.3-3.ppc
    curl-7.86.0-1.ppc
    cyrus-sasl-2.1.28-1.ppc
    db-5.3.28-1.ppc
    dbus-1.13.18-1.ppc
    dnf-4.2.17-64_51.ppc
    dnf-automatic-4.2.17-64_51.ppc
    dnf-data-4.2.17-64_51.ppc
    dnf-plugins-core-4.0.16-64_50.ppc
    dnf-utils-4.0.16-64_50.ppc
    emacs-26.3-1.ppc
    emacs-nox-26.3-1.ppc
    expat-2.5.0-1.ppc
    expect-5.42.1-3.ppc
    gcc-10-2.ppc
    gcc-cpp-10-2.ppc
    gcc10-10.3.0-6.ppc
    gcc10-cpp-10.3.0-6.ppc
    gdbm-1.19-1.ppc
    gettext-0.21-2.ppc
    git-2.38.3-1.ppc
    git-core-2.38.3-1.ppc
    git-core-doc-2.38.3-1.noarch
    glib2-2.56.1-3.ppc
    gmp-6.2.1-1.ppc
    gnupg2-2.2.23-1.ppc
    gnutls-3.7.2-1.ppc
    gpgme-1.13.1-100.ppc
    httpd-2.4.54-3.ppc
    info-6.7-1.ppc
    iozone-3.429-1.ppc
    iperf-2.0.13-1.ppc
    jq-1.6-1.ppc
    json-c-0.15-2.ppc
    krb5-libs-1.18.5-2.ppc
    less-598-1.ppc
    libassuan-2.5.3-1.ppc
    libcomps-0.1.11-100.ppc
    libdnf-0.39.1-64_50.ppc
    libffi-3.2.1-3.ppc
    libgcc-10-2.ppc
    libgcc10-10.3.0-6.ppc
    libgcrypt-1.9.4-1.ppc
    libgcrypt-devel-1.9.4-1.ppc
    libgomp-10-2.ppc
    libgomp10-10.3.0-6.ppc
    libgpg-error-1.42-1.ppc
    libgpg-error-devel-1.42-1.ppc
    libiconv-1.17-1.ppc
    libjpeg-9d-1.ppc
    libksba-1.4.0-1.ppc
    libmodulemd-1.5.2-100.ppc
    libmpc-1.2.1-1.ppc
    libnghttp2-1.46.0-1.ppc
    libpcap-1.10.0-1.ppc
    librepo-1.11.0-100.ppc
    libsmartcols-2.34-100.ppc
    libsmbclient-4.14.12-1.ppc
    libsolv-0.7.9-64_50.ppc
    libssh2-1.10.0-2.ppc
    libstdc++-10-2.ppc
    libstdc++10-10.3.0-6.ppc
    libtasn1-4.16.0-1.ppc
    libtextstyle-0.21-2.ppc
    libunistring-0.9.10-1.ppc
    libxml2-2.9.14-1.ppc
    libxml2-devel-2.9.14-1.ppc
    libxml2-python3-2.9.14-1.ppc
    libxslt-1.1.34-1.ppc
    libxslt-devel-1.1.34-1.ppc
    libyaml-0.2.2-1.ppc
    libzstd-1.4.4-100.ppc
    logrotate-3.14.0-2.ppc
    lpar2rrd-agent-7.50-0.ppc
    lz4-1.9.3-1.ppc
    mpfr-4.1.0-1.ppc
    ncurses-6.2-2.ppc
    net-snmp-5.8-3.ppc
    net-snmp-utils-5.8-3.ppc
    nettle-3.7.3-1.ppc
    npth-1.5-1.ppc
    oniguruma-6.9.6-1.ppc
    openldap-2.5.12-1.ppc
    p11-kit-0.23.22-1.ppc
    p11-kit-tools-0.23.22-1.ppc
    pcre-8.44-2.ppc
    perl-5.34.1-1.ppc
    pinentry-1.0.0-1.ppc
    pkg-config-0.29.2-2.ppc
    popt-1.18-1.ppc
    pysqlite-2.8.3-2.ppc
    python-2.7.18-3.ppc
    python-devel-2.7.18-3.ppc
    python-iniparse-0.4-1.noarch
    python-pycurl-7.43.0-1.ppc
    python-tools-2.7.18-3.ppc
    python-urlgrabber-3.10.1-1.noarch
    python3-3.7.12-1.ppc
    python3-dateutil-2.8.0-1.noarch
    python3-devel-3.7.12-1.ppc
    python3-dnf-4.2.17-64_51.ppc
    python3-dnf-plugins-core-4.0.16-64_50.ppc
    python3-gpg-1.13.1-100.ppc
    python3-hawkey-0.39.1-64_50.ppc
    python3-libcomps-0.1.11-100.ppc
    python3-libdnf-0.39.1-64_50.ppc
    python3-librepo-1.11.0-100.ppc
    python3-six-1.13.0-1.noarch
    python3-tools-3.7.12-1.ppc
    readline-8.1-1.ppc
    rpm-python3-4.15.1-64_2.ppc
    rsync-3.2.7-1.ppc
    samba-4.14.12-1.ppc
    samba-client-4.14.12-1.ppc
    samba-common-4.14.12-1.ppc
    samba-devel-4.14.12-1.ppc
    samba-libs-4.14.12-1.ppc
    samba-winbind-4.14.12-1.ppc
    samba-winbind-clients-4.14.12-1.ppc
    sed-4.8-1.ppc
    sqlite-3.37.2-1.ppc
    tcl-8.4.7-3.ppc
    tk-8.4.7-3.ppc
    unzip-6.0-3.ppc
    wget-1.21.2-1.ppc
    xz-devel-5.2.5-1.ppc
    xz-libs-5.2.5-1.ppc
    yum-metadata-parser-1.1.4-2.ppc
    zchunk-libs-1.1.4-101.ppc
    zip-3.0-4.ppc
    zlib-1.2.13-1.ppc
    #​

    Many thanks, Steve

    ------------------------------
    Steve Munday
    AIX, IBM i, HMC, PowerVM
    ------------------------------



  • 4.  RE: Curl error (35): SSL connect error for https:// .. /respond.xml [error:0609D09C:digital envelope routines:INT_CTX_NEW:unsupported algorithm]

    Posted Mon January 30, 2023 02:44 AM
    Hi Steve,

    You have dnf related dependencies with both openssl-1.1.1 and openssl-1.0.2.
    libdnf, ibrepo and python3 are not  the latest one available from the AIX Toolbox.
    This post has more detailed information on this one https://community.ibm.com/community/user/power/discussion/recent-dnf-and-yum-issues-with-newer-python3-and-curl-builds
    I guess at some point you have individually updated some packages like curl etc. instead of dnf update.

    To resolve the current issue, one option is to manually remove dnf dependencies libdnf and librepo.

    rpm -e libdnf python3-libdnf python3-hawkey librepo python3-librepo --nodeps

    run the dnf_aixtoolbox.sh script with "-d" option

    And then run "dnf update" which will have all the latest dnf dependencies.


    ------------------------------
    SANGAMESH
    ------------------------------



  • 5.  RE: Curl error (35): SSL connect error for https:// .. /respond.xml [error:0609D09C:digital envelope routines:INT_CTX_NEW:unsupported algorithm]

    IBM Champion
    Posted Mon January 30, 2023 04:50 AM
    Sangamesh,

    Many thanks for the guidance which worked perfectly :-)

    A couple of things if I may.

    1. What's the difference between "dnf update" and "dnf distro-sync"?

    2. Moving forwards, it is likely I won't be able (allowed) to "just" run a dnf update as the App team(s) may wish/need/require certain package levels to be installed.  These packages are nothing to do with DNF per se so I'm wondering if there's a way to keep everyone happy?

    Many thanks, Steve

    ------------------------------
    Steve Munday
    AIX, IBM i, HMC, PowerVM
    ------------------------------