Hi, On Mon, Feb 20, 2017 at 1:37 PM, Gert Doering <g...@greenie.muc.de> wrote: > > Interesting. Anything useful in openvpn's logs? >
Mon Feb 20 11:57:56 2017 us=371715 OpenSSL: error:0607B083:digital envelope routines:EVP_CipherInit_ex:no cipher set Mon Feb 20 11:57:56 2017 us=371746 EVP cipher init #2 I found the culprit: OpenSSL's EVP_CipherInit() changed way too much for a 3 lines function. Prior to v1.1, the code did a check on cipher parameter and cleared the EVP context only if cipher was not null. In 1.1, it clears the context unconditionnaly. Having to cope with changes in the interface is not that fun, having to cope with behavior changes is even worse :) I'm producing an additional commit to work around that change (the proposed change does not depend on the OpenSSL version). >> I don't have much time to test with other OpenSSL versions but I guess >> you have the infrastructure that will help. > > Well, *I* do not have specific "test across various OpenSSL versions" > infrastructure, but compiling across our buildbot zoo gives us quite a > bit of coverage... and I assume Steffan has more coverage on SSL library > versions. > > thanks for your work! > > gert Well, thanks to everyone involved -- all of you have been really kind with me (for now :)) Best regards, -- Emmanuel Deloget ------------------------------------------------------------------------------ Check out the vibrant tech community on one of the world's most engaging tech sites, SlashDot.org! http://sdm.link/slashdot _______________________________________________ Openvpn-devel mailing list Openvpn-devel@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/openvpn-devel
