On Tue, Nov 17, 2009, Alex Lam wrote:
> Hi Steve,
>
> Is there a 0.9.8m with the DTLS and TLS reneg fix planned in the near
> future?
>
Unfortunately we are at the mercy of the standardisation process. We can't
release a version of OpenSSL out there which uses a technique which might
change dur
Hi Steve,
Is there a 0.9.8m with the DTLS and TLS reneg fix planned in the near
future?
I tried the head of branch from OpenSSL_0_9_8-stable as adviced.
First there was compilation issue due to FIPS issue which
I overcame with ./config no-fips
Then, I run into a segfault on s_server :-(
Th
On Wed, Nov 11, 2009, Alex Lam wrote:
> Hi all,
>
> The patch that disable renegotiation has broken DTLS's ClientHello exchange
> in 0.9.8l.
> Server sends an Alert together with HelloVerifyRequest...
>
As mentioned in the announcement 0.9.8l is based on 0.9.8k which has a very
broken DTLS impl
Hi all,
The patch that disable renegotiation has broken DTLS's ClientHello exchange
in 0.9.8l.
Server sends an Alert together with HelloVerifyRequest...
Thanks,
Alex.
alexl-lnx2:~/openssl-098l/openssl/apps> ./openssl s_server -dtls1 -debug
Using default temp DH parameters
Using default temp ECDH
