[openssl-users] help : tls1.3 : tls1.2 test case failing after integration of openssl-1.1.1-pre7

Chakrapani Reddy vc.chakrapani at gmail.com
Tue Jun 19 15:18:18 UTC 2018


Hello  ,

Started using openssl-1.1.1-pre7 (pre-release 7) in my lab. Compiled the
code in Linux successfully. When I run the tls1.2 test case observed that
it's failing with openssl-1.1.1-pre7 but the same test case is passing with
the openssl-1.1.0g.

Sample code :
    SSL_CTX *ctx = SSL_CTX_new(TLSv1_2_method());
    if (ctx==0) {
        return(false);
    }
    if ((ssl_session = SSL_new(ctx))==0) {
        return(false);
    }
    if (ssl_get_new_session(ssl_session, 1)==0)  {
        return(false);
    }
    if(ssl_session->session == NULL)
    {
        printf("++++++++++ SSL_new : ssl_session->session is NULL
+++++++++");
    }
    if(ssl_session->s3 == NULL)
    {
        printf("+++++++++ SSL_new : ssl_session->s3 is NULL +++++++++");
    }

Below are the observations:
* SSL_new() returned the valid pointer but s3 member  as NULL.
* ssl_get_new_session() is giving the session member as NULL.

Configured the below flags during the compilation process.
./Configure --prefix=/opt/build/openssl-1.1.1-pre7  no-tls1_3 no-shared
enable-rc5 enable-md2 enable-ssl2 enable-weak-ssl-ciphers enable-zlib
--with-zlib-lib=/opt/build/zlib-1.2.8/lib/
--with-zlib-include=/opt/build/zlib-1.2.8/include/
linux-x86_64

Behavior is same with the configuration flag " enable-tls1_3" too.

Can you please help to explain here if I am missing anything in integration
part or known issue in openssl-1.1.1-pre7 ?


Regards,
Chakrapani
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://mta.openssl.org/pipermail/openssl-users/attachments/20180619/93a22a82/attachment.html>


More information about the openssl-users mailing list