session ticket extension problem when using the
ssl23_client_hello method
On 04/08/15 22:03, Ian McFadries (imcfadri) wrote:
> Sorry for the delayed response, I was away for a week and was able to test
> the fix today.
>
> The fix did resolve the session ticket issue that I was
the
ssl23_client_hello method
On 04/08/15 22:03, Ian McFadries (imcfadri) wrote:
Sorry for the delayed response, I was away for a week and was able to test
the fix today.
The fix did resolve the session ticket issue that I was encountering.
However, now I get an error when I am not using the session
?
Cheers,
Emilia
On Mon, Aug 10, 2015 at 5:34 PM, Ian McFadries (imcfadri)
imcfa...@cisco.commailto:imcfa...@cisco.com wrote:
I am trying to determine if the tls_session_secret_cb return value is used to
indicate an unrecoverable error has been encountered
(i.e. bad pointer for data needed
I am trying to determine if the tls_session_secret_cb return value is used to
indicate an unrecoverable error has been encountered
(i.e. bad pointer for data needed to calculate secret) or if it is intended to
be an indicator that the session secret is deemed
invalid (EAP-FAST PAC expired
I am trying to determine if the tls_session_secret_cb return value is used to
indicate an unrecoverable error has been encountered
(i.e. bad pointer for data needed to calculate secret) or if it is intended to
be an indicator that the session secret is deemed
invalid (EAP-FAST PAC expired
Sorry for the delayed response, I was away for a week and was able to test the
fix today.
The fix did resolve the session ticket issue that I was encountering. However,
now I get an error when I am not using the session tickets under the following
conditions. I am continuing to investigate.
I have encountered a problem with EAP-FAST PACs when switching our
implementation of OpenSSL from a context that supports TLSv1.0 only to a
context that supports negotiation to the highest available TLS version.
For EAP-FAST the PAC opaque is loaded into the SSL tlsext_session_ticket using
...@openssl.org] On Behalf Of Viktor
Dukhovni
Sent: Thursday, July 23, 2015 9:40 AM
To: openssl-dev@openssl.org
Subject: Re: [openssl-dev] TLS session ticket extension problem when using the
ssl23_client_hello method
On Thu, Jul 23, 2015 at 01:19:24PM +, Ian McFadries (imcfadri) wrote:
I