On 11 Oct 2015, at 09:01, Alan DeKok <aland@deployingradius.com> wrote:
On Oct 10, 2015, at 2:40 PM, Michael Ströder <michael@stroeder.com> wrote:
Which exact version of OpenSSL 1.0.2?
I'm not sure... I haven't seen people posting which version of OpenSSL they're using.
As I said previously, tests were with OpenSSL 1.0.2d. That's likely to be the ones everyone is using, because, as I said previously, the main exposure to OpenSSL 1.0.2 is through homebrew, and people building it themselves.
I'm asking because I'm running FreeRADIUS 3.0.10 (formerly 3.0.9) on openSUSE Tumbleweed (x86_64 and armv6l) with package openssl-1.0.2d-1.1 using EAP-TTLS/PAP without issue.
Maybe you're hitting the HMAC ABI incompatibility? It was fixed in 1.0.2c: https://www.openssl.org/news/changelog.html#x2
I don't think so. But who knows...
As I said previously, OpenSSL 1.0.2d does not fix the problem. You might want to read what I wrote before contributing to the dialogue? -Arran Arran Cudbard-Bell <a.cudbardb@freeradius.org> FreeRADIUS development team FD31 3077 42EC 7FCD 32FE 5EE2 56CF 27F9 30A8 CAA2