> -----Original Message-----
> From: Freek Dijkstra [mailto:[email protected]]
>
> Hi,
Hi Freek,
Sorry for the delay, but I've had some trouble replicating the bug.
>
> Sat Feb 11 22:46:37 2012 OpenVPN 2.x-master x86_64-apple-darwin11.2.0
> [SSL (OpenSSL)] [LZO2] [eurephia] [MH] [PF_INET6] [IPv6 payload
> 20110522-1 (2.2.0)] built on Feb 11 2012 Sat Feb 11 22:46:37 2012
> Cipher 'BF-CBC' uses a mode not supported by OpenVPN in your current
> ...
I've tried to replicate the bug on Linux and have been unsuccessful so far.
Thankfully a colleague managed to replicate it on a Mac using the stock OpenSSL
(v0.9.8.something). I think it's related to the value returned by
EVP_cipher_mode(). Unfortunately I don't have direct access to a mac, so could
you try compiling and running the following code, please?
--- SNIP ---
#include <stdio.h>
#include <openssl/evp.h>
int main()
{
OpenSSL_add_all_algorithms();
const EVP_CIPHER *ciph = EVP_get_cipherbyname ("BF-CBC");
printf("%p\n", ciph);
printf ("EVP_CIPH_CBC_MODE: %u\n", EVP_CIPH_CBC_MODE);
printf ("Function: %lu\n", EVP_CIPHER_mode (ciph));
return 0;
}
--- SNIP ---
The commands would be:
$ gcc <sourcefile.c> -lssl
$ ./a.out
Thanks,
Adriaan de Jong
