From 485c09461bf710521a03d817047dbeffbaf94034 Mon Sep 17 00:00:00 2001
From: Dirk <dirk@testssl.sh>
Date: Wed, 5 Sep 2018 16:56:15 +0200
Subject: [PATCH] Avoid conflicts of OpenSSL 1.1.1 config file

This addresses a bug where openssl s_client connects hiccuped
because of newer config files which our openssl 1.0.2 couldn't
swallow.

It appeared first on Debian.

FIX #1117

FIX #1098
---
 testssl.sh | 4 ++++
 1 file changed, 4 insertions(+)

diff --git a/testssl.sh b/testssl.sh
index 959de0c..3fcc950 100755
--- a/testssl.sh
+++ b/testssl.sh
@@ -11880,11 +11880,15 @@ initialize_engine(){
           outln
           pr_warning "No engine or GOST support via engine with your $OPENSSL"; outln
           fileout_insert_warning "engine_problem" "WARN" "No engine or GOST support via engine with your $OPENSSL"
+          # Avoid clashes of OpenSSL 1.1.1 config file with our openssl 1.0.2. This is for Debian 10
+          export OPENSSL_CONF=''
           return 1
      elif $OPENSSL engine gost -vvvv -t -c 2>&1 | grep -iq "No such" ; then
           outln
           pr_warning "No engine or GOST support via engine with your $OPENSSL"; outln
           fileout_insert_warning "engine_problem" "WARN" "No engine or GOST support via engine with your $OPENSSL"
+          # Avoid clashes of OpenSSL 1.1.1 config file with our openssl 1.0.2. This is for Debian 10
+          export OPENSSL_CONF=''
           return 1
      else      # we have engine support
           if [[ -n "$OPENSSL_CONF" ]]; then