Re: [openssl-users] Multiple reconnection in OpenSSL 1.1.0

- Mail original - > De: "Matt Caswell" > À: "openssl-users" > Envoyé: Mardi 16 Janvier 2018 17:49:02 > Objet: Re: [openssl-users] Multiple reconnection in OpenSSL 1.1.0 > On 16/01/18 16:22, Huy Cong Vu wrote: >> Ok the call for SSL_clear() appar

Re: [openssl-users] Multiple reconnection in OpenSSL 1.1.0

On 16/01/18 16:22, Huy Cong Vu wrote: > Ok the call for SSL_clear() apparently works. Thanks a lot. > To make the code clean, I will re-instantiate SSL object for each connection. > I do not have any specific reasons to keep SSL object alive after each > connection. It just that I do not want t

Re: [openssl-users] Multiple reconnection in OpenSSL 1.1.0

- Mail original - > De: "Matt Caswell" > À: "openssl-users" > Envoyé: Mardi 16 Janvier 2018 16:58:11 > Objet: Re: [openssl-users] Multiple reconnection in OpenSSL 1.1.0 > On 16/01/18 15:27, Huy Cong Vu wrote: >> Here is any traffic transf

Re: [openssl-users] Multiple reconnection in OpenSSL 1.1.0

On 16/01/18 15:27, Huy Cong Vu wrote: > Here is any traffic transfer between my clients and server from the beginning > to the 1st failed SSL_read(): > https://pastebin.com/raw/Bjixearh > > IP src: 192.168.1.4 > IP dest: 192.168.1.121 > > I'm not sure the version I pasted have enough informati

Re: [openssl-users] Multiple reconnection in OpenSSL 1.1.0

Huy-Cong VU Platform hardware member Network administrator Wandercraft 09 72 58 77 03 - Mail original - > De: "Matt Caswell" > À: "openssl-users" > Envoyé: Mardi 16 Janvier 2018 16:17:47 > Objet: Re: [openssl-users] Multiple reconnection in OpenSSL 1.1.

Re: [openssl-users] Multiple reconnection in OpenSSL 1.1.0

On 16/01/18 15:15, Huy Cong Vu wrote: >> - A wireshark trace of the communication between the two endpoints might >> be helpful to figure out what is going wrong > > ERR_print_errors_fp() before call of SSL_read returns nothing, which should > be a good new... > By browsing Wireshark, I jump in

Re: [openssl-users] Multiple reconnection in OpenSSL 1.1.0

- Mail original - > De: "Matt Caswell" > À: "openssl-users" > Envoyé: Mardi 16 Janvier 2018 14:57:28 > Objet: Re: [openssl-users] Multiple reconnection in OpenSSL 1.1.0 > On 16/01/18 13:35, Huy Cong Vu wrote: >> Thanks for the advi

Re: [openssl-users] Multiple reconnection in OpenSSL 1.1.0

On 16/01/18 13:35, Huy Cong Vu wrote: > Thanks for the advice, I got these as error: > 1408F10B:SSL routines:ssl3_get_record:wrong version > number:ssl/record/ssl3_record.c:210 > 1408F119:SSL routines:ssl3_get_record:decryption failed or bad record > mac:ssl/record/ssl3_record.c:375 > > Does

Re: [openssl-users] Multiple reconnection in OpenSSL 1.1.0

On 16/01/18 10:31, Huy Cong Vu wrote: > OpenSSL_add_all_algorithms(); > SSL_load_error_strings(); You do not need to make the above two calls in 1.1.0. They are called automatically. > //Setup curves parameters > EC_KEY *ecdh = EC_KEY_new_by_curve_name (NID_X9_62_prime256v1); > SSL_CTX_set_tmp_e

Re: [openssl-users] Multiple reconnection in OpenSSL 1.1.0

On 16/01/18 10:31, Huy Cong Vu wrote: > OpenSSL_add_all_algorithms(); > SSL_load_error_strings(); You do not need to make the above two calls in 1.1.0. They are called automatically. > //Setup curves parameters > EC_KEY *ecdh = EC_KEY_new_by_curve_name (NID_X9_62_prime256v1); > SSL_CTX_set_tmp

[openssl-users] Multiple reconnection in OpenSSL 1.1.0

Hi everyone, Recently I have problem when trying to update my OpenSSL library from 1.0.1f to 1.1.0g. I have a server that runs 24/24 and receive connections from only 1 source, and 1 connection at a time, nothing really fancy, but it worked very well in OpenSSL 1.0.1f version. In 1.1.0g, the c