[openssl-users] new FIPS module

As always, if you don't care about FIPS 140 then count yourself lucky and move on. Work on the new FIPS module has so far taken a backseat to higher priority topics like the 1.1 release and security vulnerabilities, but we should start to make some progress soon. I've put together a rough wiki

Re: [openssl-users] new FIPS module

On 27/09/2016 15:41, Steve Marquess wrote: As always, if you don't care about FIPS 140 then count yourself lucky and move on. Work on the new FIPS module has so far taken a backseat to higher priority topics like the 1.1 release and security vulnerabilities, but we should start to make some

Re: [openssl-users] Building on Windows against run-time library

> From: openssl-users [mailto:openssl-users-boun...@openssl.org] On Behalf > Of Wei Sun > Sent: Monday, September 26, 2016 19:06 > > Just joined the list, and apologize if the following question was answered > before. > > I'm building openssl 1.1.0b on Windows. It is stated that it defaults to

Re: [openssl-users] Why 1.0.1 AND 1.0.2 ?

(Can you change your mailer to plaintext, or at least get rid of the black-on-grey styling?) > Reading the 1.0.2j CHANGES file, it appears that 1.0.2 was built from 1.0.1l. That might be the time it was branched off from it. At that point, the two releases are different. >And my knowledge

[openssl-users] Building FIPS-capable OpenSSL on Linux PPC64

I am trying to build FIPS OpenSSL libraries for Linux PPC64 but it does not seem possible. This has been raised before (link below) but I didn't see any resolution. http://openssl.6102.n7.nabble.com/BUG-FIPS-capable-OpenSSL-fails-to-build-on-Linux-PPC64-td66890.html I can build it if I run

Re: [openssl-users] Can't compile Apache 2.4.23 with OpenSSL 1.1.0b

The library is mostly self-initializing now, so the malloc_init call is probably not needed. SSLv2 support is entirely removed. There are very drastic changes between the 1.0.x series and the 1.1.0 series, you really should read at least the NEWS file entries and maybe the CHANGES as well.

Re: [openssl-users] Building FIPS-capable OpenSSL on Linux PPC64

On 09/27/2016 10:56 AM, Perrow, Graeme wrote: > I am trying to build FIPS OpenSSL libraries for Linux PPC64 but it does > not seem possible. This has been raised before (link below) but I didn’t > see any resolution. > > > >

Re: [openssl-users] new FIPS module

> As always, if you don't care about FIPS 140 then count yourself lucky and > move on. > > Work on the new FIPS module has so far taken a backseat to higher priority > topics like the 1.1 release and security vulnerabilities, but we should start > to > make some progress soon. I've put together

Re: [openssl-users] Can't compile Apache 2.4.23 with OpenSSL 1.1.0b

You might want to start here: http://apache-http-server.18135.x6.nabble.com/Support-for-OpenSSL-1-1-0-td5027694.html -- Senior Architect, Akamai Technologies IM: richs...@jabber.at Twitter: RichSalz -- openssl-users mailing list To unsubscribe:

Re: [openssl-users] Why 1.0.1 AND 1.0.2 ?

On 27/09/16 08:52, REIX, Tony wrote: > Reading the 1.0.2j CHANGES file, it appears that 1.0.2 was built from > 1.0.1l. > And there are 1124 of description of the changes for 1.0.2 and about 500 > lines of changes from 1.0.1l to 1.0.1u . > And my knowledge of OpenSSL is VERY VERY small. > >

Re: [openssl-users] "nmake install" attempts to write outside of prefix

On 26 September 2016 at 22:04, Braden McDaniel wrote: > After configuring with a prefix (other than "C:\Program Files"), it seems > that "nmake install" still attempts to write to "C:\Program Files\Common > Files\SSL". Is there some other way to suppress this, or is this a

Re: [openssl-users] Why 1.0.1 AND 1.0.2 ?

Reading the 1.0.2j CHANGES file, it appears that 1.0.2 was built from 1.0.1l. And there are 1124 of description of the changes for 1.0.2 and about 500 lines of changes from 1.0.1l to 1.0.1u . And my knowledge of OpenSSL is VERY VERY small. Looking at 1.0.1l, out of bug fixes, I've found some

[openssl-users] "nmake install" attempts to write outside of prefix

After configuring with a prefix (other than "C:\Program Files"), it seems that "nmake install" still attempts to write to "C:\Program Files\Common Files\SSL". Is there some other way to suppress this, or is this a bug in the current build system? I am using OpenSSL 1.1.0b with platform

Re: [openssl-users] Building on Windows against run-time library

Hello, I'm new to the openssl build system and I'm sure there is some script I could change/add for different linking behaviors. It seems it uses /MD to build shared library and /MT to build static library for 1.1.0b. And I was able to edit generated makefile to change run-time

[openssl-users] Can't compile Apache 2.4.23 with OpenSSL 1.1.0b

When I try to compile Apache 2.4.23 with OpenSSL 1.1.0b I get: secure:httpd-2.4.23 administrator$ sudo make <--many lines cut out--> /Users/administrator/Downloads/httpd-2.4.23/srclib/apr/libtool --silent --mode=link gcc-arch x86_64 -L/usr/local/openssl/lib -lssl -lcrypto -lpthread \