Re: Reg missing rc4-ia64.pl in openssl 1.1.1

Hi, Thanks for all the information related to missing rc4 assembly file for IA-64 architecture. *Richard : * The following mentioned degradation on nt64 compared to the same openssl version 1.1.1 build with out using the flags " "enable-weak-ssl-ciphers" and " enable-deprecated" . Thanks and

AW: Performance Issue With OpenSSL 1.1.1c

Correction, Tomáš was correct: there is an ` # ifndef DEVRANDOM` surrounding the problematic code: https://github.com/openssl/openssl/blob/OpenSSL_1_1_1c/e_os.h#L25-L34 Neverthelesss, I still think this code needs to be changed, because the seeding should just work correctly out-of-the-box

RE: Reg missing rc4-ia64.pl in openssl 1.1.1

> From: openssl-users [mailto:openssl-users-boun...@openssl.org] On Behalf Of > J. J. Farrell > Sent: Wednesday, May 29, 2019 15:02 > On 29/05/2019 18:39, ramakrushna mishra wrote: >> In Openssl 1.1.1, the file "rc4-ia64.pl" is missing. This cause degradation >> of >> performance on AIX. ...

AW: Performance Issue With OpenSSL 1.1.1c

> To workaround the /dev/random blocking issue, you can just add: > > -DDEVRANDOM="\"/dev/urandom\"" > > as a parameter to ./Configure > > This will remove the special handling of /dev/urandom and /dev/random > in 1.1.1c. Tomáš, Jay, I'm afraid this suggestion won't help, because

Re: Reg missing rc4-ia64.pl in openssl 1.1.1

On 29/05/2019 18:39, ramakrushna mishra wrote: In Openssl 1.1.1,  the file "rc4-ia64.pl " is missing. This cause degradation of performance on AIX. ... The AIX port to Itanium was never released as a product, and was abandoned altogether in 2002; I'm surprised that a

Re: Reg missing rc4-ia64.pl in openssl 1.1.1

On Wed, 29 May 2019 19:39:38 +0200, ramakrushna mishra wrote: > In Openssl 1.1.1,  the file "rc4-ia64.pl" is missing. This cause degradation > of performance on > AIX.  Is this intentional for deprecating the support for RC4 ?  It got remove as part of a larger cleanup commit: commit

Re: X509_STORE_CTX_get1_certs

On Wed, May 29, 2019 at 07:44:26PM +, Jason Schultz wrote: > It looks like this function is available in OpenSSL 1.1.1 (not available > in 1.0.2) and I think I need to use it, but I can't find documentation for > it anywhere. In 1.0.2 it was called X509_STORE_get1_certs(). > Is this an over

X509_STORE_CTX_get1_certs

It looks like this function is available in OpenSSL 1.1.1 (not available in 1.0.2) and I think I need to use it, but I can't find documentation for it anywhere. Is this an over site, or am I missing something obvious? Thanks, Jason

Re: Application linking to both libcrypto.so.1.0.0 and libcrypto.so.1.1

Chethan Kumar wrote: > Sorry for the inconvenience caused by not asking query clearly. > Below is the output from ldd on application. Right, and now you need to recursively go through the list with readelf or ldd, and which out which one of these libraries then requires libcrypto.1.0.0.

Re: Application linking to both libcrypto.so.1.0.0 and libcrypto.so.1.1

> On May 29, 2019, at 9:43 AM, Michael Wojcik > wrote: > > So either the application program depends on libcrypto.so.1.0.0, or one of > the preceding libraries does. Some path through the dependency graph leads to > libcrypto.so.1.0.0. Not only is the application (dynamically) linked

Reg missing rc4-ia64.pl in openssl 1.1.1

Hi, In Openssl 1.1.1, the file "rc4-ia64.pl" is missing. This cause degradation of performance on AIX. Is this intentional for deprecating the support for RC4 ? Similarly If I build Openssl 1.1.1 on nt64 with flags "*enable-weak-ssl-ciphers" and "**enable-deprecated" , *I witness degrade in

Re: Performance Issue With OpenSSL 1.1.1c

On Tue, 2019-05-28 at 10:39 -0700, Jay Foster wrote: > I built OpenSSL 1.1.1c from the recent release, but have noticed > what > seems like a significant performance drop compared with 1.1.1b. I > notice this when starting lighttpd. With 1.1.1b, lighttpd starts in > a > few seconds, but with

Re: Forthcoming OpenSSL Releases

On 29.05.19 15:05, The Doctor wrote: For the next branch of OpenSSL is it 1.1.2 or 1.2.0 ? The next major release will be 3.0.0. See https://www.openssl.org/blog/blog/2018/11/28/version for an explanation. Matthias

Re: Performance Issue With OpenSSL 1.1.1c

Jakob Bohm via openssl-users wrote in <23f8b94d-0078-af3c-b46a-929b9d005\ 4...@wisemo.com>: |On 28/05/2019 23:48, Steffen Nurpmeso wrote: |> Jay Foster wrote in <84571f12-68b3-f7ee-7896-c891a2e25...@roadrunner.com\ |> >: |>|On 5/28/2019 10:39 AM, Jay Foster wrote: |>|> I built OpenSSL 1.1.1c

Re: Performance Issue With OpenSSL 1.1.1c

On 28/05/2019 23:48, Steffen Nurpmeso wrote: Jay Foster wrote in <84571f12-68b3-f7ee-7896-c891a2e25...@roadrunner.com>: |On 5/28/2019 10:39 AM, Jay Foster wrote: |> I built OpenSSL 1.1.1c from the recent release, but have noticed what |> seems like a significant performance drop compared

Fw: Building openssl outside of the source tree" doesn't work well

Please help have a look. | | dengwenbin_0301 邮箱：dengwenbin_0...@126.com | Signature is customized by Netease Mail Master - Forwarded Message - From: dengwenbin_0301 Date: 05/27/2019 14:24 To: Richard Levitte Subject: Re:Re: Fw:Re:Re: Building openssl outside of the source

RE: Application linking to both libcrypto.so.1.0.0 and libcrypto.so.1.1

> From: Chethan Kumar [mailto:chethan.ku...@toshiba-tsip.com] > Sent: Wednesday, May 29, 2019 04:07 > > Below is the output from ldd on application. > Seriously I didn't knew application uses these many libraries[Knew only the > problem]. > linux-gate.so.1 (0xf76fc000) >

Re: Forthcoming OpenSSL Releases

For the next branch of OpenSSL is it 1.1.2 or 1.2.0 ? -- Member - Liberal International This is doctor@@nl2k.ab.ca Ici doctor@@nl2k.ab.ca Yahweh, Queen & country!Never Satan President Republic!Beware AntiChrist rising! https://www.empire.kred/ROOTNK?t=94a1f39b Look at Psalms 14 and 53 on

Re: Forthcoming OpenSSL Releases

On 21/05/2019 16:43, Matt Caswell wrote: > The OpenSSL project team would like to announce the forthcoming release > of OpenSSL versions 1.1.1c, 1.1.0k and 1.0.2s. > > These releases will be made available on 28th May 2019 between approximately > 1200-1600 UTC. > > OpenSSL 1.1.0k and 1.0.2s

RE: Application linking to both libcrypto.so.1.0.0 and libcrypto.so.1.1

Dear all, Sorry for the inconvenience caused by not asking query clearly. Below is the output from ldd on application. Seriously I didn't knew application uses these many libraries[Knew only the problem]. linux-gate.so.1 (0xf76fc000) libpam.so.0 => /lib/i386-linux-gnu/libpam.so.0

AW: Performance Issue With OpenSSL 1.1.1c

> I think I have tracked down the change in 1.1.1c that is causing this. > It is the addition of the DEVRANDOM_WAIT functionality for linux in > e_os.h and crypto/rand/rand_unix.c.  lighttpd (libcrypto) is waiting in > a select() call on /dev/random.  After this eventually wakes up, it then >