Nevermind, I just realized that it is using Client certificate there and
doesn't needs to be asyncified.
On Fri, Aug 29, 2014 at 12:54 AM, Fedor Indutny fe...@indutny.com wrote:
Oh, and I have just realized that it doesn't handle `ssl3_get_cert_verify`
case right now.
I'll figure it out
While testing different ciphersuites I found a quite drastic change in
the behavior between openssl version 1.0.1h to 1.0.1i. While using a
cipherlist like ECDHE-RSA-AES128-SHA256:RC4 with 1.0.1h the
ECDHE-RSA-AES128-SHA256 cipher is used. With 1.0.1i uses RC4-SHA.
example:
$ openssl
On Fri, Aug 29, 2014 at 04:19:43PM +0200, Frank Meier wrote:
While testing different ciphersuites I found a quite drastic change in the
behavior between openssl version 1.0.1h to 1.0.1i. While using a cipherlist
like ECDHE-RSA-AES128-SHA256:RC4 with 1.0.1h the ECDHE-RSA-AES128-SHA256
cipher
On Pá, 2014-08-29 at 16:19 +0200, Frank Meier wrote:
While testing different ciphersuites I found a quite drastic change in
the behavior between openssl version 1.0.1h to 1.0.1i. While using a
cipherlist like ECDHE-RSA-AES128-SHA256:RC4 with 1.0.1h the
ECDHE-RSA-AES128-SHA256 cipher is
This is, unfortunately, the tip of an iceberg. The timezone offset is actually
stored in the ASN1 string, it's just not displayed. There's a bunch of
RFC-compliant issues involved, date and time parsing, etc.
--
Rich Salz, OpenSSL dev team; rs...@openssl.org
Fixed in head:
-commit b09eb246e2385ff629e365043290bbb485e99588
Author: Rich Salz rs...@akamai.com
Date: Tue Aug 26 22:31:11 2014 -0400
RT3246: req command prints version number wrong
Make X509_REQ_print_ex do the same thing that
X509_REQ_print does.
Reviewed-by: Matt Caswell m...@openssl.org
As Andy explained, this is a mis-configuration issue. Not an openssl bug.
--
Rich Salz, OpenSSL dev team; rs...@openssl.org
__
OpenSSL Project http://www.openssl.org
Development Mailing List
Old release, insufficient information to reproduce, closing the ticket.
--
Rich Salz, OpenSSL dev team; rs...@openssl.org
__
OpenSSL Project http://www.openssl.org
Development Mailing List
Old release.
Can't reproduce in current stuff.
Closing ticket.
--
Rich Salz, OpenSSL dev team; rs...@openssl.org
__
OpenSSL Project http://www.openssl.org
Development Mailing List
Fixed in rsalz-monolith branch of akamai/openssl fork on github.
To be part of post-1.0.2. Thanks!
commit 0223322b17f50f2e46c072e4d1cdd2e82426260d
Author: David Michael fedora@gmail.com
Date: Fri Aug 29 13:46:16 2014 -0400
RT2451: Add telnet to s_client -starttls
--
Rich Salz, OpenSSL dev
Use no -tls flags if you need to use SSLv3 to talk to the device.
--
Rich Salz, OpenSSL dev team; rs...@openssl.org
__
OpenSSL Project http://www.openssl.org
Development Mailing List
This was already fixed at
https://github.com/akamai/openssl/tree/rsalz-monolith/apps
--
Rich Salz, OpenSSL dev team; rs...@openssl.org
__
OpenSSL Project http://www.openssl.org
Development Mailing
Release and platform too old.
We have been working on leaks and many are fixed, many more are in-progress.
Please retry if this is still a concern and open a new ticket.
--
Rich Salz, OpenSSL dev team; rs...@openssl.org
__
A question, not a bug in openssl. Old platform very old release. Nothing
openssl-specific.
--
Rich Salz, OpenSSL dev team; rs...@openssl.org
__
OpenSSL Project http://www.openssl.org
Development
Poster says it is not repeatable, not enough info to reproduce, old code,
closing ticket.
--
Rich Salz, OpenSSL dev team; rs...@openssl.org
__
OpenSSL Project http://www.openssl.org
Development
Fixed for 1.0.2 and HEAD
OpenSSL_1_0_2-stable 12dabfc RT2880: HFS is case-insensitive filenames
HEAD 82d9185 RT2880: HFS is case-insensitive filenames
Author: Jim Reid j...@rfc1035.com
Date: Fri Aug 29 12:07:42 2014 -0400
RT2880: HFS is case-insensitive filenames
Add Darwin to list of
Someone already fixed this for 1.0.2 and 1.0.1, but for some reason it wasn't
fixed in master/1.0.0/0.9.8.
I've fixed this now. Thanks for the report.
Matt
__
OpenSSL Project
This is working as designed. From the man page:
EC_KEY_generate_key generates a new public and private key for the
supplied eckey object.
Matt
__
OpenSSL Project http://www.openssl.org
OpenSSL_1_0_0-stable 62ca466 RT2379: Bug in BIO_set_accept_port.pod
OpenSSL_1_0_1-stable 4d16915 RT2379: Bug in BIO_set_accept_port.pod
OpenSSL_1_0_2-stable 5decce4 RT2379: Bug in BIO_set_accept_port.pod
HEAD 07e3b31 RT2379: Bug in BIO_set_accept_port.pod
Author: Rich Salz rs...@akamai.com
Date:
Okay.
Can we create certificate as per specific timezone instead GMT timezone?
Regards,
Kavan Modi
From: Rich Salz via RT r...@openssl.org
Sent: Friday, August 29, 2014 9:14 PM
To: kavan.m...@elitecore.com
Cc: openssl-dev@openssl.org
Subject: [openssl.org
20 matches
Mail list logo