[stunnel-users] Handshake failure

• Previous message (by thread): [stunnel-users] Handshake failure
• Next message (by thread): [stunnel-users] Handshake failure
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

Michal Trojnara wrote:
 >>If someone could give me a hint as to where to start poking, I'd greatly
 >>appreciate it.
 >
 >Disable TCP wrappers library support:
 >    ./configure --disable-libwrap
 >    make clean
 >    make
 >    make install
 >Please let us know if it works fine, now.

It does. Why, thank you very much, I just wanted a hint you have have a
solution :-)

However I'd be interested in what you think was the problem.

As I received your suggestion, I was going through the OpenSSL code and the
point I reached in my investigation is that during certificate verification,
the call to X509_time_adj (openssl:crypto/x509/x509_vfy.c) never 
returns. Not
sure if the problem was in ASN1_UTCTIME or what, yet. Either way, what does
disabling libwrap do, that would change certificate verification?

Cheers,
Y.

• Previous message (by thread): [stunnel-users] Handshake failure
• Next message (by thread): [stunnel-users] Handshake failure
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]