control: tags - patch On 2017-11-10 14:45:52 [+0100], To Mats Erik Andersson wrote: > On 2017-11-09 18:54:42 [+0100], Mats Erik Andersson wrote: > > than a few kilobytes. Netkit-ftl-ssl achieves this by > > use of the function SSL_copy_seesion_id(). This presumably > > is a legacy function from the time of SSLeay. > > I can't find this in SSL_copy_seesion_id() in the source in > 0.17.34+0.2-4. What could I do wrong.
so you had a typo and I did copy/paste and did not notice it. > > With the advent of libssl1.1 the behaviour of SSL_copy_session_id() > > has changed without any mention in the published changelog as far > > as I have been able to determine. In effect, SSL_copy_session_id() > > is able to arrange reuse of the session identity exactly once -- > > I repeat to make the point -- exactly ONCE, where libssl1.0 is > > able to continually renew the identity for the entire session. > > Thus libssl1.1 prevents transmission of files in excess of 3 kB! So the problem was that you never shutdown the connection. You can blame libssl that it behaves differently or you can apply the first patch attached. The second one replaces SSL_copy_session_id() with something maybe more obvious and with more documentation. > > M E Andersson, maintainer of netkit-ftp-ssl Sebastian
