[Pkg-openssl-devel] Bug#607914: Bug#607914: Bug#607914: please enable padlock engine for 1.0.0 version of openssl
Kurt Roeckx
kurt at roeckx.be
Sat Feb 25 18:47:07 UTC 2012
On Sat, Feb 25, 2012 at 05:41:17PM +0100, JM wrote:
> apt-get -b source openssl
> dpkg -i libssl1.0.0_1.0.0g-1_i386.deb openssl_1.0.0g-1_i386.deb
> openssl s_server -cert /etc/ssl/private/server.crt -key
> /etc/ssl/private/server.key -ssl3 -engine padlock -state -msg -debug
> on a separate terminal:
> openssl s_client : fails with 3074197656:error:140943FC:SSL
> routines:SSL3_READ_BYTES:sslv3 alert bad record mac:s3_pkt.c:1195:SSL
> alert number 20
So, it looks like this is a problem with AES192 and AES256.
Encryption and decryption using the padlock engine with either
seems to generate wrong data. It can't even decrypt it's
own data.
AES128 works without a problem.
Kurt
More information about the Pkg-openssl-devel
mailing list