Re: NPE on malloc in ssl/d1_both.c, ssl/s3_enc.c, ssl/sll_ciph.c, ssl/ssl_sess.c, ssl/t1_lib.c

Kurt Well I am not a C expert, for the moment I'll leave the development team do this ! Didier Le 14.06.2014 00:51, Kurt Roeckx a écrit : On Thu, Jun 12, 2014 at 08:05:52PM +0200, dcrue...@qualitesys.com wrote: Thanks Kurt I found ssl/t1_lib.c but not ssl/d1_both.c, ssl/s3_enc.c,

Re: [openssl.org #3405] 1.0.2 trunk doesn't build on 64-bit linux

The following error occurs using the 20140613 snapshot on the 1.0.2 trunk. The host is a 64-bit CentOS system. This problem does not occur on 32-bit CentOS. gcc -I.. -I../.. -I../modes -I../asn1 -I../evp -I../../include -DOPENSSL_THREADS -D_REENTRANT -DDSO_DLFCN -DHAVE_DLFCN_H

Re: [openssl.org #3400] ccs received early

On Thu, Jun 12, 2014 at 06:00:05PM +0200, Kurt Roeckx wrote: On Thu, Jun 12, 2014 at 02:06:53PM +0200, Florian Weimer wrote: On 06/12/2014 01:28 PM, Salz, Rich wrote: Since the patch for CVE-2014-0224 I've so far received 2 reports about people getting the error: ccs received early.

Re: [openssl.org #3400] ccs received early

On Sat, Jun 14, 2014 at 04:23:13PM +0200, Kurt Roeckx via RT wrote: Yes. As far as I can see all reports are about 0.9.8o sending large amounts of data to 1.0.1e. So I can reproduce it. But I can only seem to be reproducing it when using postgres having a 1.0.1 talk to a 0.9.8. For me

Re: [openssl.org #3400] ccs received early

On Sat, Jun 14, 2014 at 04:42:19PM +, Viktor Dukhovni wrote: On Sat, Jun 14, 2014 at 04:23:13PM +0200, Kurt Roeckx via RT wrote: Yes. As far as I can see all reports are about 0.9.8o sending large amounts of data to 1.0.1e. So I can reproduce it. But I can only seem to be

Re: [openssl.org #3400] ccs received early

On Sat, Jun 14, 2014 at 07:12:06PM +0200, Kurt Roeckx via RT wrote: So it's 0.9.8o (+patches) (server, sending data) talking to OpenSSL_1_0_1-stable (client). After some data transfer I see: s-c: Hello Request c-s: Client Hello s-c: Server Hello, Certificate, Server Hello Done c-s: Client

Windows patchs in distribution

$ ./config by $ perl ./config replace $ ./Configure mingw by $ perl ./Configure mingw - while running make I get the following error (openssl-SNAP-20140614) : cryptlib.c:121:15: warning 'SSLeay_MSVC5_hack' is defined but not used [-Wunused-variable] Bye Didier CRUETTE

Document s_server(1) -no_cache option

diff --git a/doc/apps/s_server.pod b/doc/apps/s_server.pod index ad8dcda..c05a6c6 100644 --- a/doc/apps/s_server.pod +++ b/doc/apps/s_server.pod @@ -55,6 +55,7 @@ Bopenssl Bs_server [B-engine id] [B-tlsextdebug] [B-no_ticket] +[B-no_cache] [B-id_prefix arg] [B-rand file(s)] [B-serverinfo

Windows : bug ssl/s3_pkt.c:647 and apps/speed.c and apps/s_socket.c

Hello Since openssl-SNAP-20140613, for windows configuration A bug in ssl/s3_pkt.c:647 'INT_MAX' undeclared (first use in this function) OPENSSL_assert(s-s3-wnum=INT_MAX); A bug in apps/speed.c:318 format '%d' expects arguments of type 'int', but argument 3 has type DWORD' [-Wformat=] A

[openssl.org #3400] ccs received early

Fixed now: https://git.openssl.org/gitweb/?p=openssl.git;a=commit;h=3b77f01702cbbb75c77 Steve. -- Dr Stephen N. Henson. OpenSSL project core developer. Commercial tech support now available see: http://www.openssl.org __

state.html isn't uptodate

This page isn't uptodate. https://www.openssl.org/news/state.html Cheers Jan __ OpenSSL Project http://www.openssl.org Development Mailing List openssl-dev@openssl.org