Re: OpenSSL compliance with Linux distributions

2020-08-10 Thread Viktor Dukhovni
On Thu, Aug 06, 2020 at 09:24:32PM +0200, Patrick Mooc wrote: > Thank you Ben for your answer. > > I had a look today for this point, but I didin't found anything about > extension in the OpenSSL version I use (0.9.8). If I am mistaken, OpenSSL 0.9.8 shuld have support for the SNI extension.

Re: OpenSSL compliance with Linux distributions

2020-08-10 Thread Patrick Mooc
Hello, I tried to follow your procedure but I saw that I don't have same folders. That lets me know that I forgot to give an important point concerning my problem : the Debian distribution I use, is not on a PC, but it is an embedded one. It is a Qt project (also an old version of course,

Re: OpenSSL compliance with Linux distributions

2020-08-10 Thread Patrick Mooc
Hello Hubert, Thank you for your answser. I already did this test, but also without success. Best Regards, Le 07/08/2020 à 18:18, Hubert Kario a écrit : On Thursday, 6 August 2020 21:24:32 CEST, Patrick Mooc wrote: Thank you Ben for your answer. I had a look today for this point, but I

Re: openssl-users Digest, Vol 69, Issue 7

2020-08-10 Thread Rakesh Parihar
Hi Mark, Thanks for your response. Let me check with the details you provided. Rakesh Parihar Sr. Software Engineer rakesh.pari...@encora.com Ahmedabad, IN [cid:e36974b4-09e5-4d04-aa9a-0e25aa504920] encora.com

Re: OpenSSL FIPS for 1.1.x

2020-08-10 Thread Vijay Chander
Cool. Thanks. On Mon, Aug 10, 2020 at 9:09 AM Matt Caswell wrote: > On 10/08/2020 16:25, Vijay Chander wrote: > > > > Thank you Matt. > > > > Our FIPS compliance vendor is recommending the following for openssl 1.1 > > from Oracle. > > > > >

Re: OpenSSL FIPS for 1.1.x

2020-08-10 Thread Matt Caswell
On 10/08/2020 16:25, Vijay Chander wrote: > > Thank you Matt. > > Our FIPS compliance vendor is recommending the following for openssl 1.1 > from Oracle. >   > https://github.com/oracle/solaris-userland/tree/master/components/openssl/openssl-fips-140/fipscanister-dev/patches I can't comment on

Re: OpenSSL FIPS for 1.1.x

2020-08-10 Thread Vijay Chander
Thank you Matt. Our FIPS compliance vendor is recommending the following for openssl 1.1 from Oracle. https://github.com/oracle/solaris-userland/tree/master/components/openssl/openssl-fips-140/fipscanister-dev/patches Thanks, -vijay On Mon, Aug 10, 2020 at 8:08 AM Matt Caswell wrote: > > >

Re: OpenSSL FIPS for 1.1.x

2020-08-10 Thread Matt Caswell
On 10/08/2020 16:01, Vijay Chander wrote: > Hi, > > This link here below only seems to talk about 1.0.x > https://wiki.openssl.org/index.php/FIPS_Library_and_Android > > Is there a wiki for openssl fips for openssl-1.1.0x ? There is no FIPS module for the 1.1.x series. We are currently

OpenSSL FIPS for 1.1.x

2020-08-10 Thread Vijay Chander
Hi, This link here below only seems to talk about 1.0.x https://wiki.openssl.org/index.php/FIPS_Library_and_Android Is there a wiki for openssl fips for openssl-1.1.0x ? Thanks, -vijay

Help - Building OpenSSL FIPS for 64 bit Android

2020-08-10 Thread Rakesh Parihar
Hi All, I am seeking help on generating FIPS compliance OpenSSL libs for Android Native Application. I am trying to build openssl-1.0.2t with the FIPS module openssl-fips-2.0.16 to support 64-bit android devices, I have tried following the steps on the Openssl wiki

Re: [EXTERNAL] Re: odd error for ECDSA key in REQ.

2020-08-10 Thread Erwann Abalea via openssl-users
The key itself is good. Its encoding in the CSR isn't. Looks like the public key was X9.62 encoded in its uncompressed form (i.e. start with a 04 octet, and then the octets composing the x and y coordinates), and then wrapped into an ASN.1 OCTET STRING (i.e. use the 04 tag, plus a 0x41 length,