[[EMAIL PROTECTED] - Wed May 1 12:20:35 2002]:
! echo #define DATE \`date`\; \
! echo #define DATE \`LC_TIME=C date`\; \
Is anybody aware of a platform on which this would cause trouble?
Best regards,
Lutz
I have added the missing ; for 0.9.7-dev and -dev.
We had no reports for 0.9.6d-beta1, even though the problem seems
to be in it, too. I however don't want to break that version
just minutes before it is released.
Best regards,
Lutz
[[EMAIL PROTECTED] - Thu May 9 22:13:32 2002]:
I am trying to compile on a 64 bit Suse sles7 powerpc system.
the error message indicates
-m486
is an invalid compiler parameter. Anyone know the parameters I need to
give
./config to
get it to work for 64 bit Suse on a powerpc
Thanks. I have added a corresponding entry into config.
Please check out a new snapshot for correct behaviour.
Best regards,
Lutz
__
OpenSSL Project http://www.openssl.org
Development
[[EMAIL PROTECTED] - Sun May 12 22:48:56 2002]:
JFYI, when updating our package from 0.9.6c to 0.9.6d I've noticed
that the new shared libcrypto library doesn't work anymore. The
openssl(1) binary wouldn't recognize any of the block ciphers. I
tracked this down to the addition of
[[EMAIL PROTECTED] - Wed May 15 13:25:14 2002]:
Hi!
i use Your project in my Client-Server project.
For example, my Server calls BIO functions to use opened socket
for handshaking , after that init_ssl_connection and everything works
fine.
But what will happen if i'll try to use client
Thanks, I have fixed the problem.
I have found the missing =over 4 directly before the =back.
Best regards,
Lutz
__
OpenSSL Project http://www.openssl.org
Development Mailing List
Thanks, ticket closed,
Lutz
__
OpenSSL Project http://www.openssl.org
Development Mailing List [EMAIL PROTECTED]
Automated List Manager
Thanks, I have fixed it in the repository.
Best regards,
Lutz
__
OpenSSL Project http://www.openssl.org
Development Mailing List [EMAIL PROTECTED]
Automated List
Obviously in enginetest.c the strdup() - BUF_strdup() migration was
forgotten.
I'll assign this to Richard, who takes care of the 0.9.6-engine branch.
Best regards,
Lutz
__
OpenSSL Project
You may want to look into the details of the certificate and make sure,
that
the required trust settings are activated. It is not enough to simply
have the
certificate, but you also have to trust it.
If this doesn't help, please ask this question on the openssl-users
list.
Best regards,
Thanks, the new OID has been added for 0.9.7 and later.
Best regards,
Lutz
__
OpenSSL Project http://www.openssl.org
Development Mailing List [EMAIL PROTECTED]
[[EMAIL PROTECTED] - Thu Jun 6 08:55:05 2002]:
On Wed, Jun 05, 2002 at 03:10:58PM +0200, Lutz Jaenicke via RT wrote:
[[EMAIL PROTECTED] - Wed Jun 5 14:48:52 2002]:
ck_ssl.c: In function k_tn_tls_negotiate':
ck_ssl.c:3232: ID_uniqueIdentifier' undeclared (first use
On Thu, Jun 06, 2002 at 11:27:11AM +0300, Mike Pechkin wrote:
On Thu, Jun 06, 2002 at 09:46:28AM +0200, Lutz Jaenicke via RT wrote:
For instance, mod_ssl 2.8.8-1.3.24 use workaround:
#ifndef NID_uniqueIdentifier
#define NID_uniqueIdentifier 102
#endif
I don't like
On Thu, Jun 06, 2002 at 12:39:50PM +0300, Mike Pechkin wrote:
On Thu, Jun 06, 2002 at 09:46:28AM +0200, Lutz Jaenicke via RT wrote:
Also, markus@ created this temp patch:
+@@ -102,6 +104,13 @@
+ !ERROR This module requires OpenSSL 0.9.5a or higher
+ #endif
The change introduced in OpenSSL 0.9.6d to prevent attacks on CBC
ciphers with known IVs seems to break compatibility.
Several discussions on the list and discussions I had in private email
indicate, that compatibility problems arise from this change. It should
be discussed, whether there is
On Wed, Jun 05, 2002 at 09:33:25AM +0200, Vadim Fedukovich via RT wrote:
patch to add SET-specific objects is attached. It's rather large,
still it would let to build Naina without modifying openssl code.
I have made some further modifications: I did not like the direct use of
2 23 42 for SET
[[EMAIL PROTECTED] - Tue Jun 11 09:11:38 2002]:
I believe that this last parameter needs to be of type size_t.
The problem is not solved by changing the calls to SSL_read() and
SSL_write(). These functions call internal functions which again call
other internal functions and so on. All of
[[EMAIL PROTECTED] - Tue Jun 4 19:09:40 2002]:
cc -o openssl -DMONOLITH -I../include -fPIC -DTHREADS -D_REENTRANT -O3
-D_DARWIN -DB_ENDIAN openssl.o verify.o asn1pars.o req.o dgst.o dh.o
dhparam.o enc.o passwd.o gendh.o errstr.o ca.o pkcs7.o crl2p7.o crl.o
rsa.o rsautl.o dsa.o dsaparam.o
Sorry, my explanation went into the wrong bucket :-(
Here again:
I have tried to access the host (and the specific URL) mentioned with
the openssl s_client command line tool. I could not see anything
strange. After the data (how useful is it?) is transferred, the client
sends a close notify
[[EMAIL PROTECTED] - Tue Jun 11 19:53:21 2002]:
Hello,
I'm getting the following error when I try and build openssh-0.9.6d
while running the make command:
cc -I.. -I../.. -I../../include -KPIC -DTHREADS -D_REENTRANT
-DDSO_DLFCN
-DHAVE_DLFCN_H -xtarget=ultra -xarch=v8plus -xO5
The manual page about SSL_CTX_set_client_cert_cb was simply wrong.
What in hell did I smoke when writing it? Or was it simply too late
at night??
Anyway, I have just checked in a new version:
If a certificate was already set, the client_cert_cb will never be
called. Once it is called and
As already pointed out in additional emails in openssl-dev:
* the change will stay in place, thus NID_x500UniqueIdentifier
will be the macro to use starting with OpenSSL 0.9.7
* I have not activated the original meaning of uniqueIdentifier and
it will not be done before 0.9.8 in order to
[[EMAIL PROTECTED] - Thu Jun 13 08:34:54 2002]:
The config script needs to use gcc -dumpversion
instead of gcc --version to determine the gcc version.
gcc-3.1 outputs a bunch of text with --version, but
just the number with -dumpversion, which also works for
gcc-2.95.
Sounds like a
[guest - Thu Jun 13 10:52:54 2002]:
if this callback is
called only once, how can we assure TLS compliance ? I thought that it
should be possible
to react to a servers request by dynamically choosing from the list of
acceptable CA's
it attaches ?
The certificate (and private key)
[jaenicke - Mon Jun 10 17:42:40 2002]:
I have made some further modifications: I did not like the direct use
of
2 23 42 for SET (even though correct of course) but wanted to build
the
tree from the root.
While doing this I noted, that the CCITT has long since been renamed
to ITU-T.
I
Ok, I have checked in your changes with some minor adjustments.
Best regards,
Lutz
__
OpenSSL Project http://www.openssl.org
Development Mailing List [EMAIL
[[EMAIL PROTECTED] - Fri Jun 14 12:02:20 2002]:
From CHANGES:
*) Rename 'des_encrypt' to 'des_encrypt1'. This avoids the clashes
with des_encrypt() defined on some operating systems, like Solaris
and UnixWare.
[Richard Levitte]
Just wanted
Ok, I have now finished applying the patches including the changed
prototypes for ASN1 using the DECLARE macro.
Please test the next snapshot (or beta2, which will probably be built
on Sunday evening).
Best regards,
Lutz
Different solutions have been proposed and I am not sure whether the
currently checked in version will finally work.
I am not sure for how long -dumpversion was supported (at least since
1994 as was reported) and I strongly consider to use -dumpversion.
Richard: you seem to have a beta version
On Fri, Jun 14, 2002 at 08:34:06PM +0200, Jani Taskinen via RT wrote:
On Fri, 14 Jun 2002, Lutz Jaenicke via RT wrote:
This problem has been resolved for 0.9.7...
Great.
Is it worthwile to make a small adjustment for 0.9.6e (in case it will
be released)?
If 0.9.7 is due
[[EMAIL PROTECTED] - Fri Jun 14 22:02:06 2002]:
On Fri, 14 Jun 2002, Lutz Jaenicke via RT wrote:
There will not be another release of 0.9.6 before 0.9.7 will be out.
We still maintain the 0.9.6 tree, because we anticipate that due to
incompatible changes between 0.9.6 and 0.9.7 several
Ok, I have finally changed the gcc-recognition in config to use the
-dumpversion flag.
Case closed :-)
Best regards,
Lutz
__
OpenSSL Project http://www.openssl.org
Development Mailing
Testing...
--
Lutz Jaenicke [EMAIL PROTECTED]
http://www.aet.TU-Cottbus.DE/personen/jaenicke/
BTU Cottbus, Allgemeine Elektrotechnik
Universitaetsplatz 3-4, D-03044 Cottbus
__
OpenSSL Project
On Mon, Jun 17, 2002 at 07:43:18PM +0200, [EMAIL PROTECTED] via RT wrote:
redhat linux never upgraded libraries are rpm's glibc-2.1.92-14 and
glibc-devel-2.1.92-14. it's redhat 7.0. I think sysconf is unistd.h. Some other
headers are in /usr/i386-glibc21-linux/include, and since I'm not
The handling of PKCS12 et al is explained in Steve Henson's excellent
FAQ:
http://www.drh-consultancy.demon.co.uk/pkcs12faq.html
Best regards,
Lutz
__
OpenSSL Project http://www.openssl.org
Ticket closed, as the problem is not reproducable with OpenSSL source.
It rather seems to be a redhat problem.
Best regards,
__
OpenSSL Project http://www.openssl.org
Development Mailing List
On Sun, Jun 23, 2002 at 04:44:07PM +0200, R.DuFresne via RT wrote:
uname -a
Linux darkstar 2.0.35 #4 Mon Dec 14 18:18:57 CST 1998 i586 unknown
config shared no-threads
make
make test
works fine for openssl-engine-0.9.6b/
works fine for openssl-0.9.7-beta2/
Fails miserably for
[[EMAIL PROTECTED] - Tue Jun 25 20:51:20 2002]:
Hello friend,
I am working for IBM server technology group(U.S.) I am trying to
implement
open ssl on AS400. I know it works on unix,windows,vms etc platforms but
can anybody suggest me howe to implement it on AS 400 which is IBM iseries
[[EMAIL PROTECTED] - Thu Jun 27 08:46:49 2002]:
When I try to set up an SSL connection between two invocations of
the openssl command, I get a no shared cipher error. Since I can
set up SSL connections to web servers, I suspect that the problem is
with the openssl implementing the server
[[EMAIL PROTECTED] - Thu Jun 27 08:43:17 2002]:
output of make report follows. i removed the -O3 flag from
Makefile.ssl and make test still fails as follows.
...
./rc4test
error calculating RC4
output: 75 b7 19 80 82 e0 c5 ef 00
expect: 75 b7 87 80 99 e0 c5 96 00
error calculating RC4
[[EMAIL PROTECTED] - Wed Jun 26 19:28:22 2002]:
official word from Sun about /dev/random support in Solaris9,
Solaris8,
and prior support. -GA
http://sunsolve.sun.com/pub-
cgi/retrieve.pl?doc=fsrdb/27606zone_32=SUNWski
http://sunsolve.sun.com/pub-
On Thu, Jun 27, 2002 at 08:35:19PM +0200, Jonathan Louie via RT wrote:
sorry about the duplicate, the install readme didn't indicate where i
could check for open bugs. i've found it now :) perhaps the readme
should be updated?
Ok, I have added the information about RT to the README and
[[EMAIL PROTECTED] - Wed Jul 3 16:58:21 2002]:
...
The latest version of the 0.9.6 series is 0.9.6d. Does this problem
still appear with this version?
(HP-UX 10.20 is my build platform...)
Best regards,
Lutz
__
OpenSSL
Ciphers with eNULL encryption (read this: without encryption) were not
covered by the bitmask for the strength classes (eNULL was not considered
to be a class at all). Therefore they fell through the selection roster.
That it seemed to work in some cases was just by coincidence.
I have now
[bodo - Thu Jul 4 10:34:15 2002]:
However, it would still be a good idea to create a NONE cipher suite
group alias because it is useful in the other scenarios given in the
problem description.
I have already worked in the cipher selection routines yesterday with
respect to PR#130. I will
[jaenicke - Wed Jul 10 08:50:56 2002]:
[bodo - Thu Jul 4 10:34:15 2002]:
However, it would still be a good idea to create a NONE cipher
suite
group alias because it is useful in the other scenarios given in the
problem description.
I have already worked in the cipher selection
[[EMAIL PROTECTED] - Thu Jul 11 15:25:40 2002]:
I get error messages when I tryed to compile the latest version of
openssl.
I attach a logfile of make...
The error messages indicate, that there is something odd with your gcc
setup. It seems, that the assembler used cannot correctly handle
[guest - Fri Jul 12 08:04:57 2002]:
During make install on a Solaris 2.6 with Perl 5.005_002 pod2mantest
is
called via `cd ../../util; ./pod2mantest ignore`
It complains MultilineTest failed and returns util/pod2man.pl
This path does not work at this place. It should be
On Fri, Jul 12, 2002 at 05:55:20PM +0200, Michel Mac Wing via RT wrote:
Thanks for the latest answer.
Ok, but what is your solution to compile PHP with OpenSSL (0.9.6d ?) without the
error (conflict ?) below :
Solaris 2.7
PHP4.2.1 or latest CVS
OpenSSL 0.9.6d
I don't know for what
On Sat, Jul 13, 2002 at 05:00:15PM +0200, Michel Mac Wing via RT wrote:
It was a bug of PHP ...
I have informed them about this and a this problem has been corrected in the latest
CVS.
See this for more information :
http://bugs.php.net/bug.php?id=18295
Hmm. So it seems, that they were
[[EMAIL PROTECTED] - Sun Jul 14 16:41:36 2002]:
I haven't investigated why yet but maybe it's already a known problem.
Mark.
OpenSSL self-test report:
OpenSSL version: 0.9.6d
Last change: Fix crypto/asn1/a_sign.c so that 'parameters' is
omitte...
OS (uname): Darwin
On Fri, Jul 19, 2002 at 10:39:21AM +0200, Martin Sjögren via RT wrote:
tor 2002-07-18 klockan 13.04 skrev Bodo Moeller via RT:
SSL_read() and SSL_write() are not really meant to be called with zero
length. The return value cannot be larger than zero when this is
done, so
[[EMAIL PROTECTED] - Sun Jul 21 21:58:06 2002]:
Your environment assumes something called 'pod2man'.
installing man1/CA.pl.1
./pod2mantest: pod2man: not found
sh: pod2man: not found
*** Error code 1
This problem should already been fixed. Please try a recent snapshot and
report, whether
[[EMAIL PROTECTED] - Mon Jul 29 14:43:40 2002]:
Could you please help this frustrated developer with an indication of
what I am doing wrong. I have been trying to configure Apache on the
Suse Linux platform and am seeing this error:
verify error:num19:self signed certificate in
[[EMAIL PROTECTED] - Thu Jul 25 10:22:23 2002]:
Lines 918-919:
if (pk-type == EVP_PKEY_DSA)
digest=EVP_dss1();
..should be:
#ifndef OPENSSL_NO_DSA
if (pk-type == EVP_PKEY_DSA)
digest=EVP_dss1();
#endif
...otherwise you get unresolved external errors when
On Mon, Jul 29, 2002 at 05:00:21PM +0200, Jim Beasley via RT wrote:
I read all the material you suggested and get the following error when I run
verify with the -issuer_checks:
error 29 at 0 depth lookup:subject issuer mismatch
without the -issuer_checks, there is no error.
So you
On Mon, Jul 29, 2002 at 05:41:20PM +0200, Jim Beasley via RT wrote:
The syntax I am using for the Verify follows:
openssl verify -CApath /etc/httpd/ssl.crt -CAfile
/etc/httpd/ssl.crt/ca-bundle.crt -purpose sslserver -verbose
ssl.crt/server.crt
Yes, and it is working fine, isn't it?
(the
[[EMAIL PROTECTED] - Tue Jul 30 15:23:37 2002]:
ssl\s3_srver.c (1591) error: pms_length is not a member of
evp_cipher_st
I believe the correct reference is
if (enc_pms.length sizeof pms)
instead of
if (enc.pms_length sizeof pms)
Thanks, fixed.
Lutz
On Tue, Jul 30, 2002 at 04:10:45PM +0200, Richard Levitte - VMS Whacker via RT wrote:
In message [EMAIL PROTECTED] on Tue, 30 Jul 2002
15:56:30 +0200 (CEST), Richard Levitte - VMS Whacker [EMAIL PROTECTED] said:
levitte In message [EMAIL PROTECTED] on Tue, 30 Jul 2002
15:26:34 +0200
Due to the re-inclusion of all ciphers from evp.h, the des.h header file
with the compatibility define of crypt() is included.
If a system header file defines crypt() itself, for HP-UX this is
sys/unistd.h, it must fail if included only after evp.h (or one of
the other header files includinge
On Tue, Jul 30, 2002 at 03:26:34PM +0200, Jeffrey Altman via RT wrote:
Need to add it to the exports list.
I just had a look into this thing.
Ben designed the die() function such that it uses cryptlib.h, which is
not exported. Thus the macro die() and the underlying OpenSSLDie() function
[[EMAIL PROTECTED] - Tue Jul 30 18:49:55 2002]:
Some of the files in the 0.9.6e tarball have restrictive permissions
which prevent building and installing as different non-privileged
users.
-rw--- openssl/openssl 23853 Jul 30 11:06 2002 openssl-
0.9.6e/Makefile.ssl
lrwx--
On Tue, Jul 30, 2002 at 10:38:43PM +0200, Richard Levitte - VMS Whacker via RT wrote:
In message [EMAIL PROTECTED] on Tue, 30 Jul 2002 19:36:18
+0200 (METDST), Lutz Jaenicke via RT [EMAIL PROTECTED] said:
rt Shall we disable the crypt() function for more platforms, maybe
rt even all
[[EMAIL PROTECTED] - Wed Jul 31 09:35:46 2002]:
When I type ./config under HP-UX 10.20 I get the message
./config[398]: test: Specify a parameter with this command.
The problem occurs with version 0.9.6e, not with earlier versions.
This problem is due to the handling of gcc-3.1 support
On Thu, Aug 01, 2002 at 12:24:46PM +0200, Richard Levitte via RT wrote:
[jaenicke - Tue Jul 30 22:25:20 2002]:
[[EMAIL PROTECTED] - Tue Jul 30 18:49:55 2002]:
Some of the files in the 0.9.6e tarball have restrictive
permissions
which prevent building and installing as different
On Mon, Aug 12, 2002 at 06:44:26PM +0200, Geoff Thorpe via RT wrote:
yup, I fixed some similar things in [RSA|DSA|etc]_free() functions a
while ago. Those cases were more clear-cut though, because the
structures in question had virtual-function tables (methods) with
finish() handlers
[[EMAIL PROTECTED] - Tue Aug 13 15:43:45 2002]:
Hi There
I was wondering if there is any current workaround or
any proposed date when the issue with des_encrypt1
will be fixed.
The problem has been fixed in the upcoming 0.9.7 release.
There will not be a fix for 0.9.6x, as it might break
[[EMAIL PROTECTED] - Tue Aug 6 17:38:38 2002]:
nexus@thune[4:34pm]src/openssl/openssl-0.9.7-beta3(539) grep rt2.html
README
(http://www.openssl.org/rt2.html) by mail to:
should be org/support/rt2
Thanks, fixed.
Lutz
[jaenicke - Tue Aug 13 15:16:11 2002]:
On Mon, Aug 12, 2002 at 06:44:26PM +0200, Geoff Thorpe via RT wrote:
I think it's unlikely, but I'd guess off the top of my head that
something like the following would be less risky;
if (a-sessions != NULL)
[[EMAIL PROTECTED] - Thu Aug 8 09:43:45 2002]:
I'm trying to install open-ssh 34p1 on an Aix server, running 4.3.3..
I compiled openssh 0.9.6d and zlib 1.1.4. on the server , and also
created
the a bff pancake using the contrib/aix/buildbff.sh script.
I can't start sshd either
On Thu, Aug 22, 2002 at 09:08:11AM +0200, Lance Zhang via RT wrote:
I installed openssl-0.9.6g on my Soloris machine.
I typed in 'man BIO_write' and I got 'No manual entry
for BIO_write.' I had to type in 'man BIO_read' to see
the man page for BIO_write. And it took me quite a
while to
On Thu, Sep 05, 2002 at 09:36:09AM +0200, Tom Wu via RT wrote:
I noticed that that the functions SSL_CTX_use_certificate_file and
SSL_CTX_use_certificate_chain_file are available for use with an SSL_CTX
*, yet there is no chain version available to set with an SSL *, only
[[EMAIL PROTECTED] - Wed Sep 4 21:15:50 2002]:
...
The comments above say URI, but the example shows URL.
Thanks, fixed.
Best regards,
__
OpenSSL Project http://www.openssl.org
Development
[[EMAIL PROTECTED] - Sun Sep 1 19:01:48 2002]:
In compiling MySql-4.0.2-alpha, I get the following error messages
related to OpenSSL shown below.
Using STRINGS to check the differences between OpenSSL-0.9.6a and
OpenSSL-0.9.7-beta3 shows OpenSSL_add_all_algorithms in 0.9.6a but
not
On Tue, Sep 10, 2002 at 08:52:42AM +0200, Leif Thuresson via RT wrote:
I want to implement an external session cache with openssl
but I can't find a function that will give me the session id when
storing a new session in the cache.
According to the man pages the get-session-callback used
On Mon, Sep 09, 2002 at 10:43:51AM -0500, Kenneth R. Robinette wrote:
If one calls COMP_METHOD *comp = COMP_zlib(), the first time this
call is made, a valid COMP_METHOD is returned, and the comp-type is
set correctly. However, if you make the call a second time, a valid
COMP_METHOD is
On Wed, Sep 11, 2002 at 09:21:09AM +0200, Craig Kaes via RT wrote:
OPEN_MAX, the max # of fds allowable to me is honored by fopen and on
BSD and Gnu this value tracks ulimit values. On Solaris, tho, it
appears hard coded. To wit:
[craigk:~/tmp/fopen]$ cat foo.c
#include stdio.h
[[EMAIL PROTECTED] - Wed Sep 11 09:20:08 2002]:
I was installing Open SSL on my Linux 7.3 system and seen the
following
message at the end of the make test step. Does this mean the
./config
and make steps were unsuccessful? Any information you can provide
would be
helpful.
I
[[EMAIL PROTECTED] - Wed Sep 11 09:48:53 2002]:
I sent e-mail in English before.
Anyway I'm sending it again.
You sent as:
Content-Type: text/plain;
charset=ks_c_5601-1987
Content-Transfer-Encoding: base64
This character set is not well supported by several mail clients
(and by
[[EMAIL PROTECTED] - Wed Sep 11 10:46:32 2002]:
I'm sorry I can't understand what you mean.
Is what you mean that I
need to reinstall GCC on higher version ?
Before I make openssl, I
tried to install GCC on higher version.
But it didn't work.(It also
had problem when
On Thu, Sep 12, 2002 at 05:01:32PM +0200, [EMAIL PROTECTED] wrote:
I am having the following problems on an HP-UX 11.0 box, when installing
openssl.
making all in crypto...
cc -I. -I../include -DTHREADS -D_REENTRANT -DDSO_DL -DCFLAG=+z
-D_REENTR
ANT +O3 +Optrs_strongly_typed
On Thu, Sep 12, 2002 at 07:45:19PM +0200, M Manzo via RT wrote:
Thanks for your earlier response. I have one last question. I have an
application that requires me to install OpenSSL V0.9.1C or higher. I'm
currently using Red hat 7.3, which comes preinstalled with a limited version
of
On Wed, Sep 18, 2002 at 09:09:41AM +0200, Steve Haslam via RT wrote:
On Wed, Sep 18, 2002 at 02:58:53AM +0100, Steve Haslam wrote:
So, according to ssldump, the cipherSuite entry in the ServerHello is the
same the second time round. Is it a problem that the client seems to be in
read
[[EMAIL PROTECTED] - Thu Sep 19 12:11:15 2002]:
ljaenicke@lutz:~$ dpkg -l openssl
Desired=Unknown/Install/Remove/Purge/Hold
| Status=Not/Installed/Config-files/Unpacked/Failed-config/Half-installed
|/ Err?=(none)/Hold/Reinst-required/X=both-problems (Status,Err:
uppercase=bad)
||/ Name
[[EMAIL PROTECTED] - Tue Sep 24 10:23:50 2002]:
Hi,
I am trying to install openssl on AIX using gcc
GCC version - 2.95.3 20010315 (release)
AIX version - 4.3.2.0
OpenSSL version - 0.9.7-dev
The output of config -t is attached.
The make is not sucessful. The following is the error
On Thu, Oct 10, 2002 at 11:29:16PM +0200, Chris Majewski via RT wrote:
I just went to the RT URL you sent me, and I'm not clear on what
actually happened with my request. At some point someone posted
a question which was never CC'd to me. Also I'm not sure what is the
meaning of
[[EMAIL PROTECTED] - Tue Oct 8 09:08:37 2002]:
using the config --prefix=/usr --openssldir=/usr/local/ssl -threads
command.
I do a sucessfull make
I then run make test and get a segmentation fault.
Please find attatched the output from a make report.
I am using openssl 9.6g
Redhat
[[EMAIL PROTECTED] - Fri Sep 13 09:48:48 2002]:
Hi,
surprisngly I cannot find in FAQ at
http://www.openssl.org/support/faq.cgi what is the default randfile
compiled into openssl binary. I have Solaris 2.6 with kernel module from
http://www.cosy.sbg.ac.at/~andi/ and I want to make sure it
[[EMAIL PROTECTED] - Thu Oct 3 13:09:11 2002]:
Selon Ondrej Karpis via RT [EMAIL PROTECTED]:
I have copied all header files from /usr/local/ssl/include/openssl to
/home/.../openssl-0.9.6g/include/openssl/ and it works.
I'll try to do this (Sorry if my english isn't good, but
[guest - Thu Sep 5 12:30:40 2002]:
This problem has been resolved.
int EVP_EncryptInit_ex(EVP_CIPHER_CTX *ctx, const EVP_CIPHER *type,
ENGINE *impl, unsigned char *key, unsigned char *iv);
EVP_EncryptInit_ex(ctx, EVP_bf_cbc(), NULL, key, iv);
In the example at
[[EMAIL PROTECTED] - Mon Aug 26 10:31:09 2002]:
OpenSSL self-test report:
OpenSSL version: 0.9.6g
Last change: [In 0.9.6g-engine release:]...
Options: no-idea --prefix=/usr/local --openssldir=/usr/local/ssl
no-threads shared
OS (uname): Linux binky 2.4.19 #1 Fri Aug
[levitte - Mon Aug 19 11:33:34 2002]:
[[EMAIL PROTECTED] - Mon Aug 19 09:48:39 2002]:
On Sun, Aug 18, 2002 at 08:15:04PM +0200, OpenSSL Project wrote:
OpenSSL STATUS Last modified at
__ $Date: 2002/08/14
[[EMAIL PROTECTED] - Sun Aug 18 12:30:48 2002]:
Here is some info on this subject
In crypto/rand/rand_win.c
RegQueryValueEx(HKEY_PERFORMANCE_DATA, Global, ...
is called. This call lock registry access
(_PredefinedHandleTableCriticalSection) and than load perfomance
dll using
[[EMAIL PROTECTED] - Sat Aug 17 15:51:29 2002]:
...
You should take a closer look at 0.9.7 (currently in beta), where a
some of the stricter type handling has already been applied.
We will probably not apply your change to the 0.9.6 line of
development, because it's a rather big change,
[[EMAIL PROTECTED] - Fri Aug 2 17:50:30 2002]:
While compiling openssl-engine-0.9.6e as 64bit on Solaris 8 using gcc3.1,
I get the following error when performing 'make test'.
...
Any news on this issue? Especially: does it still apply to 0.9.6g?
Best regards,
Lutz
When using client certificates with very large RSA key lengths, the SSL
handshake fails with excessive message size errors.
Reason: the maximum permitted size for the key is hardcoded to 512 bytes
in ssl3_get_cert_verify() (call to ssl3_get_message()).
This fails for 4096bit RSA keys due to the
[[EMAIL PROTECTED] - Tue Oct 29 13:54:05 2002]:
Hi,
I'm encountering problems installing openssl-0.9.6.tar.gz on Red Hat
7.2.
1.During untarring and installation I get error messages on issues
concerning symbolic links.
Does this mean I need to have an earlier version of openssl
[[EMAIL PROTECTED] - Wed Oct 23 23:41:35 2002]:
I have updated the bc, the bc tests run further. But the test_ssl
still
failed!
Did you get any further with your problem? I did not find a problem
report similar to your's. I don't know yet whether this is a platform
specific problem or
[[EMAIL PROTECTED] - Wed Oct 23 13:43:13 2002]:
Apologies if this is dumb, but I am not a Perl expert...
Having downloaded and unpacked 0.9.6g on my server, running the config
gives
the following perl error:
fgc052:root- ./config
Operating system: 9000/800-hp-hpux11
Can't locate strict.pm
1 - 100 of 279 matches
Mail list logo