Hello,
The work-around is to put the DH parameters first.
That would mean changing external interface of the software which I don't
like much.
Otherwise, you'd need to resort to the more general OSSL_STORE API,
which loads objects of various types, and you can then ignore the ones
you don
Hello,
https://github.com/vdukhovni/postfix/blob/master/postfix/src/tls/tls_dh.c#L148-L205
Thanks a lot. Works in principle now with one exception. The previous
approach worked for a file, where first comes the PEM certificate and
afterwards the DH params. The new approach only works when th
Hello Tomas Mraz,
it is somewhat unclear to me why do you consider the migration_guide(7)
useless in this regard. Citing it:
[...description...]
The openssl documentation may be logical for someone who knows all the
parts and how they work together, but for everybody else it's a large
glob
Hello,
when upgrading to openssl3 my code states that some functions are
deprecated in openssl 3, but even after reading documentation I was
unable to find a non-deprecated replacement.
Task is to read DH parameters in PEM format from a file and use them for
the current "context" and if not
