[stunnel-users] Handshake failure

RUTSCHLE Yves yves.rutschle at c-s.fr
Thu Apr 26 13:51:01 CEST 2007

Michal Trojnara wrote:
 >>If someone could give me a hint as to where to start poking, I'd greatly
 >>appreciate it.
 >Disable TCP wrappers library support:
 >    ./configure --disable-libwrap
 >    make clean
 >    make
 >    make install
 >Please let us know if it works fine, now.

It does. Why, thank you very much, I just wanted a hint you have have a
solution :-)

However I'd be interested in what you think was the problem.

As I received your suggestion, I was going through the OpenSSL code and the
point I reached in my investigation is that during certificate verification,
the call to X509_time_adj (openssl:crypto/x509/x509_vfy.c) never 
returns. Not
sure if the problem was in ASN1_UTCTIME or what, yet. Either way, what does
disabling libwrap do, that would change certificate verification?


More information about the stunnel-users mailing list