On Fri, Aug 23, 2013, Mark Pietras wrote: > > Clearly this would be impacting the cipher choice, and it may well be > choosing AES over another with the server preference on, so the next thing > we'll try is re-inserting the server preference, and immediately after the > process SSL_library_init() we'll run a OPENSSL_ia32cap = OPENSSL_ia32cap & > ~0x200000200000000; as suggested (this is running on a Windows server FYI). > Presumably that'll mean don't use the Intel AES instructions and run the > "normal" code. This test will have to wait until another production update > opportunity but I wanted to thank your for the feedback. >
It would be useful if you could work out which ciphersuite the affected clients use. Steve. -- Dr Stephen N. Henson. OpenSSL project core developer. Commercial tech support now available see: http://www.openssl.org ______________________________________________________________________ OpenSSL Project http://www.openssl.org Development Mailing List [email protected] Automated List Manager [email protected]
