[stunnel-users] Incompatibility between openssl 1.0.0 and 0.9.8 which cause stunnel windows version malfunction.

Ludovic LEVET llevet at ludosoft.org
Wed Dec 21 10:52:42 CET 2011


Hi,

- For FIPS certification.
- Yes, crypted headers of certificates are differentes from openssl 
0.9.8 and 1.0.0 like this :


openssl 1.0.0 key :

-----BEGIN ENCRYPTED PRIVATE KEY-----
MIIJnzBJBgkqhkiG9w0BBQ0wPDAbBgkqhkiG9w0BBQwwDgQI0Z45oYYRJ1cCAggA
MB0GCWCGSAFlAwQBAgQQF4QLI0IILDItqQFXHJeAxgSCCVBAo1Ed9BHwyhHeBzx2
rQELkAghar26CFsP7qvMwZ+vnATbArA2MvFWJWy0l2pl7/Rn7RcoztbSzg82c8IG
...

openssl 0.9.8 key :

-----BEGIN RSA PRIVATE KEY-----
Proc-Type: 4,ENCRYPTED
DEK-Info: DES-EDE3-CBC,327E4B06D51C7728

grestO9v2wfiqFwBy8bBbpNjMWpFrrc/9y8q68n6c48enCFyDsdVlyqToOQ+Razt
d98I+rkTow33X83e9+Zt8rGlKJlPXn3zHTKbjNhfc7j6kk+ssWJft5OAvu5NShMx
FOATl4pW97qCf1x4pFwQGm8/8MhCqOpqv2cLfjz2T4Egu1qP2sHZ35QU/gHBLHYh
...


Ludovic.


Le 21/12/2011 09:16, ayanamist a écrit :
> I generated a pair of key and certificates with openssl 1.0.0d, and 
> use them in stunnel 4.36.
> Today i upgrade it to stunnel 4.50 and it doesnot work. All 
> configurations remain unmodified. Then i tested many versions and 
> found, stunnel with openssl 1.00 works fine while with openssl 0.98 
> does not work.
> I use stunnel with linux server and windows client, stunnel 4.50 
> windows version is using openssl 0.98, so cause this problem.
> 4.47 is using 1.00e which i think is newer than 0.98 bundled with 4.50.
> So why stunnel keep changing openssl version?
>
>
>
> _

-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://www.stunnel.org/pipermail/stunnel-users/attachments/20111221/18114cb7/attachment.html>


More information about the stunnel-users mailing list