Google Groups no longer supports new Usenet posts or subscriptions. Historical content remains viewable.

Dismiss

[openssl.org #1008] [PATCH] Default CRYPTO_thread_id for AS/400 causes SSL3_AD_BAD_RECORD_MAC

7 views

Skip to first unread message

Marcel von Gunten via RT

unread,

Feb 14, 2005, 4:20:36 AM2/14/05

This is an addendum to George Shaw's AS/400 port (Ticket 951).

The patch adds support for the AS/400 to CRYPTO_thread_id(). Without it,
the RSA encryption/decryption will improperly share its BN_BLINDING
between threads, which in most cases causes corrupted master secrets and
subsequent failures to decrypt SSL records.

Note to AS/400 developers of multi-threaded applications: You need to
supply your own locking callback as outlined in thr-lock.c The PTHREADS
variant will do fine.

The attached patch is against the current 0.9.7e even though George's
port is for 0.9.7.d.

-------------------------
Marcel von Gunten
Wavelink Corporation
mvong...@wavelink.com
______________________________________________________________________
OpenSSL Project http://www.openssl.org
Development Mailing List opens...@openssl.org
Automated List Manager majo...@openssl.org

0 new messages