[יפי הרשקוביץ]

 Hi

I’m upgrading my system from Openssl version 9.6.d to Openssl version 9.8.a.

I’m experiencing some problems when I’m “playing” server, For example accepting 
an incoming call or even accessing my system via HTTPS causes the system to get 
stuck.

After some investigation I figured out that I get stuck in RAND_status(). It 
never returns.

I saw that there is a basic difference between Openssl version 9.6.d and 
Openssl version 9.8.a. regarding blinding, such that in 9.6.d blinding is 
disabled by default and in 9.8.a it is enabled by default.

(I’m running on embedded Linux)

Initially I’d like to ask in anyone has encountered such problems and if so, 
how did he solve them.

Then I’d like to try, both enabling blinding on 9.6.d and disabling blinding on 
9.8.a

I read that one should use the RSA_blinding_off and RSA_blinding_on functions, 
but I really don’t know where they should be called.

Any other advice will be also very welcomed

 

Thanks a lot.

Elly

 

 


**********************************************************************
This email and any files transmitted with it are confidential and
intended solely for the use of the individual or entity to whom they
are addressed. If you have received this email in error please notify
the system manager.

This footnote also confirms that this email message has been swept by
MIMEsweeper for the presence of computer viruses.

www.clearswift.com
**********************************************************************