[prev in list] [next in list] [prev in thread] [next in thread]
List: openssl-users
Subject: Re: [openssl-users] openssl errors with 1.0.2h in a running application
From: Jayant Jain <jjain () vmware ! com>
Date: 2016-10-14 19:56:21
Message-ID: CO2PR05MB244090B5A81790F9C675B070C9DF0 () CO2PR05MB2440 ! namprd05 ! prod ! outlook ! com
[Download RAW message or body]
Using openssl 1.0.2h with FIPS , we get the following two errors intermitte=
ntly
2D07107B:FIPS routines:FIPS_drbg_generate:in error state
error code: 0x2d071086 fips_drbg_lib.c line 391. (FIPS Self test failed=
, DRBG)
This hits the application midway. After having established a TLS session, a=
nd having received and transmitted decent number of bytes, the connection g=
ets broken and then on trying to connect again we get the above error and t=
he library never recovers.. One has to restart the application.
Any clues to where we should be looking
Thanks
________________________________
From: Jayant Jain
Sent: Friday, October 14, 2016 12:35:36 PM
To: openssl-users@openssl.org
Cc: Jayant Jain
Subject: openssl errors with 1.0.2h in a running application
Using openssl 1.0.2h with FIPS , we get the following two errors intermitte=
ntly
2D07107B:FIPS routines:FIPS_drbg_generate:in error state
error code: 0x2d071086 fips_drbg_lib.c line 391. (FIPS Self test failed=
, DRBG)
This hits the application midway. After having established a TLS session, a=
nd having received and transmitted decent number of bytes, the connection g=
ets broken and then on trying to connect again we get the above error and t=
he library never recovers.. One has to restart the application.
Any clues to where we should be looking
Thanks
[Attachment #3 (text/html)]
<html>
<head>
<meta http-equiv="Content-Type" content="text/html; charset=iso-8859-1">
<style type="text/css" style="display:none;"><!-- P {margin-top:0;margin-bottom:0;} \
--></style> </head>
<body dir="ltr">
<style type="text/css" style="display:none;"><!-- P {margin-top:0;margin-bottom:0;} \
--></style> <div id="divtagdefaultwrapper" \
style="font-size:12pt;color:#000000;font-family:Calibri,Arial,Helvetica,sans-serif;"> \
<div style="font-family: Calibri, Arial, Helvetica, sans-serif; margin-top: 0px; \
margin-bottom: 0px;"> <font face="Courier New,monospace" color="#333333"><span \
style="background-color: rgb(245, 245, 245);">Using openssl 1.0.2h with FIPS , we get \
the following two errors intermittently</span></font></div> <div style="font-family: \
Calibri, Arial, Helvetica, sans-serif; margin-top: 0px; margin-bottom: 0px;"> <font \
face="Courier New,monospace" color="#333333"><span style="background-color: rgb(245, \
245, 245);"><br> </span></font></div>
<div style="font-family: Calibri, Arial, Helvetica, sans-serif; margin-top: 0px; \
margin-bottom: 0px;"> <font face="Courier New,monospace" color="#333333"><span \
style="background-color: rgb(245, 245, 245);">2D07107B:FIPS \
routines:FIPS_drbg_generate:in error state</span></font></div> <div \
style="font-family: Calibri, Arial, Helvetica, sans-serif; margin-top: 0px; \
margin-bottom: 0px;"> <font face="Courier New,monospace" color="#333333"><span \
style="background-color: rgb(245, 245, 245);"><br> </span></font></div>
<div style="font-family: Calibri, Arial, Helvetica, sans-serif; margin-top: 0px; \
margin-bottom: 0px;"> <font face="Courier New,monospace">error \
code: </font><font face="Courier \
New,monospace"> 0x2d071086 </font><font face="Courier \
New,monospace"> fips_drbg_lib.c line 391. (FIPS </font><font \
face="Courier New,monospace">Self test failed, DRBG</font><font face="Courier \
New,monospace">) </font><br> </div>
<div style="font-family: Calibri, Arial, Helvetica, sans-serif; margin-top: 0px; \
margin-bottom: 0px;"> <br>
</div>
<div style="font-family: Calibri, Arial, Helvetica, sans-serif; margin-top: 0px; \
margin-bottom: 0px;"> <font face="Courier New,monospace">This hits the application \
midway. After having established a TLS session, and having received and transmitted \
decent number of bytes, the connection gets broken and then on trying to connect \
again we get the above error and the library never recovers.. One has to restart the \
application. </font></div> <div style="font-family: Calibri, Arial, Helvetica, \
sans-serif; margin-top: 0px; margin-bottom: 0px;"> <br>
</div>
<div style="font-family: Calibri, Arial, Helvetica, sans-serif; margin-top: 0px; \
margin-bottom: 0px;"> <font face="Courier New,monospace">Any clues to where we should \
be looking </font></div> <div style="font-family: Calibri, Arial, Helvetica, \
sans-serif; margin-top: 0px; margin-bottom: 0px;"> <br>
</div>
<div style="font-family: Calibri, Arial, Helvetica, sans-serif; margin-top: 0px; \
margin-bottom: 0px;"> <font face="Courier New,monospace">Thanks</font></div>
</div>
<hr style="display:inline-block;width:98%" tabindex="-1">
<div id="divRplyFwdMsg" dir="ltr"><font face="Calibri, sans-serif" \
style="font-size:11pt" color="#000000"><b>From:</b> Jayant Jain<br> <b>Sent:</b> \
Friday, October 14, 2016 12:35:36 PM<br> <b>To:</b> openssl-users@openssl.org<br>
<b>Cc:</b> Jayant Jain<br>
<b>Subject:</b> openssl errors with 1.0.2h in a running application </font>
<div> </div>
</div>
<div>
<div id="divtagdefaultwrapper" style="font-size:12pt; color:#000000; \
font-family:Calibri,Arial,Helvetica,sans-serif"> <p><span style="color: rgb(51, 51, \
51); font-family: 'Courier New', monospace; font-size: 12pt; white-space: pre-wrap; \
background-color: rgb(245, 245, 245);">Using openssl 1.0.2h with FIPS , we get the \
following two errors intermittently</span></p> <span style="font-family: 'Courier \
New', monospace; font-size: 12pt;"></span> <p><span style="color: rgb(51, 51, 51); \
font-family: 'Courier New', monospace; font-size: 12pt; white-space: pre-wrap; \
background-color: rgb(245, 245, 245);"><br> </span></p>
<span style="font-family: 'Courier New', monospace; font-size: 12pt;"></span>
<p><span style="color: rgb(51, 51, 51); font-family: 'Courier New', monospace; \
font-size: 12pt; white-space: pre-wrap; background-color: rgb(245, 245, \
245);">2D07107B:FIPS routines:FIPS_drbg_generate:in error state</span></p> <p><span \
style="color: rgb(51, 51, 51); font-family: 'Courier New', monospace; font-size: \
12pt; white-space: pre-wrap; background-color: rgb(245, 245, 245);"><br> </span></p>
<span style="font-family: 'Courier New', monospace; font-size: 12pt;"></span>
<div style="margin-top: 0px; margin-bottom: 0px;"><span style="font-family: 'Courier \
New', monospace; font-size: 12pt;">error code: </span><span style="font-family: \
'Courier New', monospace; font-size: 12pt;"> 0x2d071086 </span><span \
style="font-family: 'Courier New', monospace; font-size: 12pt;"> fips_drbg_lib.c \
line 391. (FIPS </span><span style="font-family: 'Courier New', monospace; \
font-size: 12pt;">Self test failed, DRBG</span><span style="font-family: 'Courier \
New', monospace; font-size: 12pt;">) </span><br> </div>
<div style="margin-top: 0px; margin-bottom: 0px;"><br>
</div>
<div style="margin-top: 0px; margin-bottom: 0px;"><span style="font-family: 'Courier \
New', monospace; font-size: 12pt;">This hits the application midway. After having \
established a TLS session, and having received and transmitted decent number of \
bytes, the connection gets broken and then on trying to connect again we get the \
above error and the library never recovers.. One has to restart the \
application. </span></div> <div style="margin-top: 0px; margin-bottom: \
0px;"><br> </div>
<div style="margin-top: 0px; margin-bottom: 0px;"><span style="font-family: 'Courier \
New', monospace;">Any clues to where we should be looking </span></div> <div \
style="margin-top: 0px; margin-bottom: 0px;"><br> </div>
<div style="margin-top: 0px; margin-bottom: 0px;"><span style="font-family: 'Courier \
New', monospace;">Thanks</span></div> <div style="margin-top: 0px; margin-bottom: \
0px;"><br> </div>
<div style="margin-top: 0px; margin-bottom: 0px;"></div>
<p><span style="color:rgb(51,51,51); font-family:monospace; font-size:13px; \
white-space:pre-wrap; background-color:rgb(245,245,245)"></span></p> <p><span \
style="color:rgb(51,51,51); font-family:monospace; font-size:13px; \
white-space:pre-wrap; background-color:rgb(245,245,245)"><br> </span></p>
</div>
</div>
</body>
</html>
--
openssl-users mailing list
To unsubscribe: https://mta.openssl.org/mailman/listinfo/openssl-users
--===============3732110093817682593==--
[prev in list] [next in list] [prev in thread] [next in thread]
Configure |
About |
News |
Add a list |
Sponsored by KoreLogic