Update of bug #97585 (project xrootd):
Status: None => Need Info
Assigned to: None => ganis
_______________________________________________________
Follow-up Comment #2:
This problem is due to a different hash function used in openssl >= 1.x .
The default algorithm is the one implemented by X509_NAME_hash which, for
openssl 1.x, is the new one.
This has an effect on the search for the relevant CA certificate file.
We introduced the possibility to choose between new and old algorithm on July
5th.
The change should be included in the 3.2 branch starting from 3.2.3 on .
If you are using a version including the change you can try to see what
happens
when you force the same algorithm as in 0.9.x by adding the switch
'-sslhashold' on the sec.protocol line.
I thought I add updated the doc but the addition did make through, sorry.
I'll make sure that is included asap .
_______________________________________________________
Reply to this item at:
<http://savannah.cern.ch/bugs/?97585>
_______________________________________________
Message sent via/by LCG Savannah
http://savannah.cern.ch/
########################################################################
Use REPLY-ALL to reply to list
To unsubscribe from the XROOTD-DEV list, click the following link:
https://listserv.slac.stanford.edu/cgi-bin/wa?SUBED1=XROOTD-DEV&A=1
