[openssl.org #2675] 1.0.1-beta1 issue: X509 certificate serial numbers are displayed as negative

This was already requested in #2049 /Ann. *** issue: X509 certificate serial numbers are displayed as negative, e.g. in -BEGIN CERTIFICATE- MIIB2zCCAUSgAwIBAgIFAKoSExQwDQYJKoZIhvcNAQEFBQAwNTEzMDEGA1UEAxMq

[openssl.org #2676] 1.0.1-beta1 issue: RSA exponent 1 is NOT ok

This avoids the Ruby error. *** issue: RSA key with even exponent or 1 does not confirm with RFC 3447 (PKCS#1) try e.g. openssl rsa -check with this key -BEGIN RSA PRIVATE KEY- MCUCAQACBQCHXk81AgEBAgEBAgMA90MCAwCMJwIBAQIBAQIDALXJ -END RSA

[openssl.org #2677] 1.0.1-beta1 issue: Misspelled PKCS

Minor editorial. /Ann. *** issue: wrong spelling of PKCS in a comment solution: insert a C patch: --- openssl-1.0.1-beta1/crypto/ec/ec_pmeth.c2011-07-28 16:42:53.0 +0200 +++ openssl-1.0.1-beta1.patch/crypto/ec/ec_pmeth.c 2012-01-06

[openssl.org #2678] 1.0.1-beta1 issue: Misleading text in documentation of ecdsa

*** issue: The return codes are defined inconsistently in the documentation of ecdsa solution: indicate the correct return codes patch: --- openssl-1.0.1-beta1/doc/crypto/ecdsa.pod2005-05-19 22:54:30.0 +0200 +++

[openssl.org #2679] 1.0.1-beta1 issue: Wrong Error Message for short RSA-key

*** issue: RSA key with small key length throws a wrong error message: invalid key bits (???) solution: replace the Error constant comment: 256 could be replaced by 384, as RSA-768 is broken patch: --- openssl-1.0.1-beta1/crypto/rsa/rsa_pmeth.c

[openssl.org #2680] 1.0.1-beta1 issue: Public EC key is shown as private with -text option

*** issue: public EC key is shown as private solution: check whether or not the EC key is really a private one patch: --- openssl-1.0.1-beta1/crypto/ec/eck_prn.c 2011-06-06 13:49:33.0 +0200 +++

[openssl.org #2681] 1.0.1-beta1 issue: seed.c uses a wrong constant

*** issue: using constant RSA_SECONDS instead of defined in the header variable tm solution: change them patch: --- openssl-1.0.1-beta1/apps/speed.c2011-12-19 15:33:37.0 +0100 +++ openssl-1.0.1-beta1.patch/apps/speed.c 2012-01-06

[openssl.org #2682] 1.0.1-beta1 issue: compilation warnings warnings in compilation of ca.c and gost_pmeth

*** issue: extra warnings in compilation of ca.c and gost_pmeth solution: convert the type to unsigned int before uppering patches: --- openssl-1.0.1-beta1/apps/ca.c 2011-10-10 01:13:45.0 +0200 +++ openssl-1.0.1-beta1.patch/apps/ca.c

[openssl.org #2683] 1.0.1-beta1 issue: wrong headings in two pod files

*** issue: wrong heading in documentation of genkey and openssl solution: place the backs correct patches: --- openssl-1.0.1-beta1/doc/apps/genpkey.pod2009-04-10 18:42:27.0 +0200 +++ openssl-1.0.1-beta1.patch/doc/apps/genpkey.pod

[openssl.org #2684] [PATCH] pod2html build fix

Hi I have encountered a problem whilst building the HTML documentation. All appears to build successfully, however when I view the file crypto/crypto.html and click on the link dsa, this takes me to apps/dsa.html instead of the expected crypto/dsa.html. Interestingly the documentation on

RE: OpenSSL FIPS Module 2.0 status update

Hi, all. What is the file openssl-fips-2.0rc2.tar.gz.1, which is about an hour newer than the one listed below? Thanks, Paul _ Paul A. Suhler, PhD | Firmware Engineer | Quantum Corporation |