[Cryptography Team] Re: SSL Error
Robert Withers
reefedjib at yahoo.com
Wed Jan 3 03:56:40 UTC 2007
Ron,
I just loaded all the latest code versions and your test code seems
to be working without any issues. I ran all of the URLs and the test
server with a SSLTracingConnHandler, all without failure. I wonder
what the problem could be on your machine or if anyone else has
problems with SSL.
regards,
Robert
On Jan 2, 2007, at 7:41 PM, Chris Muller wrote:
> Happy Holidays Ron! Looking at the differences between
> Cryptography-Core-rww.17 and Cryptography-Core-cmm.18, one
> possibility might be sharing the same vector of a BlockCipher with
> another place? Its real easy to do (particularly in test code) but
> since it's a ByteArray that, for many modes, modified in place, it
> cannot be shared.
>
> Which primitives is your code using; for example if you're not
> using CTR mode then we could probably eliminate all 23 changes on
> that class.
>
> I reviewed all of the changes once again between those two versions
> and they all look good.
>
> That leaves the differences between Cryptography-RandomAndPrime-rww.
> 2.mcz and Cryptography-RandomAndPrime-RJT.10.mcz. That was all the
> SecureRandom refactoring, do you think it might be the cause?
>
> - Chris
>
>
>
> ----- Original Message ----
> From: Ron Teitelbaum <Ron at USMedRec.com>
> To: Cryptography Team Development List
> <cryptography at lists.squeakfoundation.org>; chris at funkyobjects.org
> Sent: Tuesday, January 2, 2007 9:39:04 PM
> Subject: SSL Error
>
> Chris and All,
>
> It appears that the changes to
>
> Cryptography-RandomAndPrime and Cryptography-Core break the SSL Code.
>
> If you load
>
> Cryptography-RandomAndPrime-rww.2.mcz
> Cryptography-Core-rww.17.mcz
>
> Then run our SSL example code:
>
> 'https://tls.secg.org:40023' asUrl retrieveContents.
>
> You will get back the proper contents.
>
> Loading
>
> Cryptography-RandomAndPrime-RJT.10.mcz
> Cryptography-Core-cmm.18
>
> It breaks with a return message from the server Bad Record Mac.
>
> I tried loading each method individually and thought I'd isolated
> it, but I
> got inconsistent results. The RJT version of RandomAndPrime was my
> change
> to ensure the initial vector had the proper number of bytes.
>
> Test to Mac with the new code appears to still be working.
>
> I have not been able to isolate the error yet, but I thought I'd
> mention it
> incase anyone has an idea about which change is causing the error.
>
> Any help would be appreciated.
>
> Thanks,
>
> Ron Teitelbaum
> Cryptography Team Leader
>
> Happy New Year to everyone!
>
>
>
> _______________________________________________
> Cryptography mailing list
> Cryptography at lists.squeakfoundation.org
> http://lists.squeakfoundation.org/cgi-bin/mailman/listinfo/
> cryptography
More information about the Cryptography
mailing list