cURL / Mailing Lists / curl-library / Single Mail

curl-library

RE: axTLS patch set

From: Hu, Eric <EHu_at_directv.com>
Date: Wed, 12 Jan 2011 11:22:07 -0700

> First, axTLS doesn't handle odd key sizes. According to their bug
> tracker
> (http://sourceforge.net/tracker/?func=detail&aid=3078372&group_id=17121
> 7&atid=857113), it appears that only key lengths that are multiples of
> 16 work correctly. I had to switch out the default stunnel.pem key
> that is in the cURL source (it uses a 1234-bit key) to get the tests to
> work.
>
> Second, axTLS only sees a key as being in non-binary format (ie, PEM)
> if "-----BEGIN" are the opening 10 bytes of the file. This has been
> posted as a bug to their list
> (http://sourceforge.net/tracker/?func=detail&aid=3123838&group_id=17121
> 7&atid=857113), but has not received any comment. Moving any of the "-
> ----BEGIN" blocks in a cert bundle to the beginning of the file should
> work.
>
Both of these issues have been addressed by axTLS (currently available version is 1.3.1).

Eric

-------------------------------------------------------------------
List admin: http://cool.haxx.se/list/listinfo/curl-library
Etiquette: http://curl.haxx.se/mail/etiquette.html
Received on 2011-01-12