Re: [openssl.org #2095] BUG: sha1-x86_64: out range of signed 32bit displacement
On Fri, Nov 13, 2009 at 15:27:51 +0100, Stephen Henson via RT wrote: [...@blankpage.ch - Thu Nov 12 13:39:01 2009]: Here's a fix for bug 2095: Applied to 1.0.0, thanks for the report. Not applied to HEAD as patch doesn't apply cleanly, can you check HEAD too? Still not fixed... -- __ OpenSSL Project http://www.openssl.org Development Mailing List openssl-dev@openssl.org Automated List Manager majord...@openssl.org
Re: [openssl.org #2095] BUG: sha1-x86_64: out range of signed 32bit displacement
On Fri, Jan 15, 2010, Sami Farin wrote: On Fri, Nov 13, 2009 at 15:27:51 +0100, Stephen Henson via RT wrote: [...@blankpage.ch - Thu Nov 12 13:39:01 2009]: Here's a fix for bug 2095: Applied to 1.0.0, thanks for the report. Not applied to HEAD as patch doesn't apply cleanly, can you check HEAD too? Still not fixed... Not fixed in what? HEAD, 1.0.0-stable? Did you check snapshots and/or CVS? Steve. -- Dr Stephen N. Henson. OpenSSL project core developer. Commercial tech support now available see: http://www.openssl.org __ OpenSSL Project http://www.openssl.org Development Mailing List openssl-dev@openssl.org Automated List Manager majord...@openssl.org
[openssl.org #2143] Bug Report openssl-0.9.8l
When I compile openssl with MIT kerberos 5-1.7 and use the following Configure options: ./Configure linux-elf shared zlib --with-krb5-flavor=MIT --with-krb5-dir=/usr/local/krb5-1.7 I have no problems. But when I try and use --prefix=/usr I get the following error: CC=${CC} APPNAME=openssl OBJECTS=openssl.o verify.o asn1pars.o req.o dgst.o dh.o dhparam.o enc.o passwd.o gendh.o errstr.o ca.o pkcs7.o crl2p7.o crl.o rsa.o rsautl.o dsa.o dsaparam.o ec.o ecparam.o x509.o genrsa.o gendsa.o s_server.o s_client.o speed.o s_time.o apps.o s_cb.o s_socket.o app_rand.o version.o sess_id.o ciphers.o nseq.o pkcs12.o pkcs8.o spkac.o smime.o rand.o engine.o ocsp.o prime.o cms.o \ LIBDEPS= $LIBRARIES -ldl -lz \ link_app.${shlib_target} make[2]: Entering directory `/usr/local/src/openssl/openssl-0.9.8l/apps' /usr/local/krb5-1.7/lib/libkrb5.so: undefined reference to `krb5int_strl...@krb5support_0_mit' /usr/local/krb5-1.7/lib/libgssapi_krb5.so: undefined reference to `krb5int_buf_add_...@krb5support_0_mit' /usr/local/krb5-1.7/lib/libgssapi_krb5.so: undefined reference to `krb5int_buf_...@krb5support_0_mit' /usr/local/krb5-1.7/lib/libgssapi_krb5.so: undefined reference to `krb5int_buf_...@krb5support_0_mit' /usr/local/krb5-1.7/lib/libkrb5.so: undefined reference to `krb5int_buf_add_...@krb5support_0_mit' /usr/local/krb5-1.7/lib/libgssapi_krb5.so: undefined reference to `krb5int_buf_d...@krb5support_0_mit' /usr/local/krb5-1.7/lib/libkrb5.so: undefined reference to `krb5int_free_...@krb5support_0_mit' /usr/local/krb5-1.7/lib/libkrb5.so: undefined reference to `krb5int_ucs4_to_u...@krb5support_0_mit' /usr/local/krb5-1.7/lib/libkrb5.so: undefined reference to `krb5int_buf_init_fi...@krb5support_0_mit' /usr/local/krb5-1.7/lib/libkrb5.so: undefined reference to `krb5int_utf8_to_u...@krb5support_0_mit' /usr/local/krb5-1.7/lib/libk5crypto.so: undefined reference to `krb5int_utf8cs_to_ucs2...@krb5support_0_mit' /usr/local/krb5-1.7/lib/libkrb5.so: undefined reference to `krb5int_utf8_min...@krb5support_0_mit' /usr/local/krb5-1.7/lib/libkrb5.so: undefined reference to `krb5int_utf8s_to_ucs2...@krb5support_0_mit' /usr/local/krb5-1.7/lib/libkrb5.so: undefined reference to `krb5int_vset_error...@krb5support_0_mit' /usr/local/krb5-1.7/lib/libkrb5.so: undefined reference to `krb5int_ucs2lecs_to_ut...@krb5support_0_mit' /usr/local/krb5-1.7/lib/libkrb5.so: undefined reference to `krb5int_utf8_len...@krb5support_0_mit' /usr/local/krb5-1.7/lib/libgssapi_krb5.so: undefined reference to `krb5int_buf_init_dyna...@krb5support_0_mit' collect2: ld returned 1 exit status make[2]: *** [link_app.gnu] Error 1 make[2]: Leaving directory `/usr/local/src/openssl/openssl-0.9.8l/apps' make[1]: *** [openssl] Error 2 make[1]: Leaving directory `/usr/local/src/openssl/openssl-0.9.8l/apps' make: *** [build_apps] Error 1 I am installing this on: Linux version 2.6.26-2-686 (Debian 2.6.26-19lenny2) (da...@debian.org) (gcc version 4.1.3 20080704 (prerelease) (Debian 4.1.2-25)) As I said, openssl compiles without any errors when I do not use the prefix option. Thanks, Greg May __ OpenSSL Project http://www.openssl.org Development Mailing List openssl-dev@openssl.org Automated List Manager majord...@openssl.org
[openssl.org #2144] DTLS handshake failure in openssl-0.9.8-stable-SNAP-20100116
C:\OpenSSL\binopenssl s_server -accept 5011 -dtls1 -debug Loading 'screen' into random state - done Using default temp DH parameters Using default temp ECDH parameters ACCEPT read from 0xced570 [0x1ac2c80] (18437 bytes = 107 (0x6B)) - 16 fe ff 00 00 00 00 00-00 00 00 00 5e 01 00 00 ^... 0010 - 52 00 00 00 00 00 00 00-52 fe ff 4b 51 9b f8 5d R...R..KQ..] 0020 - f1 b0 87 51 80 0f 19 9a-cd f5 80 30 57 b6 85 22 ...Q...0W.. 0030 - 96 85 72 23 a1 cf 32 71-bc 59 cc 00 00 00 24 00 ..r#..2q.Y$. 0040 - 39 00 38 00 35 00 16 00-13 00 0a 00 33 00 32 00 9.8.5...3.2. 0050 - 2f 00 07 00 15 00 12 00-09 00 14 00 11 00 08 00 /... 0060 - 06 00 ff 01 00 00 04 00-23# 006b - SPACES/NULS write to 0xced570 [0x1a919a8] (48 bytes = 48 (0x30)) - 16 fe ff 00 00 00 00 00-00 00 00 00 23 03 00 00 #... 0010 - 17 00 00 00 00 00 00 00-17 fe ff 14 80 aa 61 6c ..al 0020 - 49 c8 1b 05 11 ed 93 f4-07 ac 94 3c d2 f1 10 25 I.% read from 0xced570 [0x1ac2c80] (18437 bytes = 127 (0x7F)) - 16 fe ff 00 00 00 00 00-00 00 01 00 72 01 00 00 r... 0010 - 66 00 01 00 00 00 00 00-66 fe ff 4b 51 9b f8 5d f...f..KQ..] 0020 - f1 b0 87 51 80 0f 19 9a-cd f5 80 30 57 b6 85 22 ...Q...0W.. 0030 - 96 85 72 23 a1 cf 32 71-bc 59 cc 00 14 80 aa 61 ..r#..2q.Y.a 0040 - 6c 49 c8 1b 05 11 ed 93-f4 07 ac 94 3c d2 f1 10 lI. 0050 - 25 00 24 00 39 00 38 00-35 00 16 00 13 00 0a 00 %.$.9.8.5... 0060 - 33 00 32 00 2f 00 07 00-15 00 12 00 09 00 14 00 3.2./... 0070 - 11 00 08 00 06 00 ff 01-00 00 04 00 23# 007f - SPACES/NULS write to 0xced570 [0x1a919a8] (15 bytes = 15 (0xF)) - 15 fe ff 00 00 00 00 00-00 00 01 00 02 02 28 ..( ERROR 6032:error:140A1144:SSL routines:SSL_BYTES_TO_CIPHER_LIST:scsv received when renegotiating:.\ssl\ssl_lib.c:1354:shutting down SSL CONNECTION CLOSED ACCEPT I am getting a ssl handshake failure when attempting to test DTLS with the latest available snapshot of 0.9.8. I've attached debug dumps of s_server and s_client showing the errors. Compiled with ml VS2008 on Vista SP2 I am getting a ssl handshake failure when attempting to test DTLS with the latest available snapshot of 0.9.8. Ive attached debug dumps of s_server and s_client showing the errors.Compiled with ml VS2008 on Vista SP2 C:\OpenSSL\binopenssl s_client -connect localhost:5011 -dtls1 -debug Loading 'screen' into random state - done CONNECTED(0114) write to 0x1c4d448 [0x1b0f8f0] (107 bytes = 107 (0x6B)) - 16 fe ff 00 00 00 00 00-00 00 00 00 5e 01 00 00 ^... 0010 - 52 00 00 00 00 00 00 00-52 fe ff 4b 51 9b f8 5d R...R..KQ..] 0020 - f1 b0 87 51 80 0f 19 9a-cd f5 80 30 57 b6 85 22 ...Q...0W.. 0030 - 96 85 72 23 a1 cf 32 71-bc 59 cc 00 00 00 24 00 ..r#..2q.Y$. 0040 - 39 00 38 00 35 00 16 00-13 00 0a 00 33 00 32 00 9.8.5...3.2. 0050 - 2f 00 07 00 15 00 12 00-09 00 14 00 11 00 08 00 /... 0060 - 06 00 ff 01 00 00 04 00-23# 006b - SPACES/NULS read from 0x1c4d448 [0x1b0b0e0] (18437 bytes = 48 (0x30)) - 16 fe ff 00 00 00 00 00-00 00 00 00 23 03 00 00 #... 0010 - 17 00 00 00 00 00 00 00-17 fe ff 14 80 aa 61 6c ..al 0020 - 49 c8 1b 05 11 ed 93 f4-07 ac 94 3c d2 f1 10 25 I.% write to 0x1c4d448 [0x1b15278] (127 bytes = 127 (0x7F)) - 16 fe ff 00 00 00 00 00-00 00 01 00 72 01 00 00 r... 0010 - 66 00 01 00 00 00 00 00-66 fe ff 4b 51 9b f8 5d f...f..KQ..] 0020 - f1 b0 87 51 80 0f 19 9a-cd f5 80 30 57 b6 85 22 ...Q...0W.. 0030 - 96 85 72 23 a1 cf 32 71-bc 59 cc 00 14 80 aa 61 ..r#..2q.Y.a 0040 - 6c 49 c8 1b 05 11 ed 93-f4 07 ac 94 3c d2 f1 10 lI. 0050 - 25 00 24 00 39 00 38 00-35 00 16 00 13 00 0a 00 %.$.9.8.5... 0060 - 33 00 32 00 2f 00 07 00-15 00 12 00 09 00 14 00 3.2./... 0070 - 11 00 08 00 06 00 ff 01-00 00 04 00 23# 007f - SPACES/NULS read from 0x1c4d448 [0x1b0b0e0] (18437 bytes = 15 (0xF)) - 15 fe ff 00 00 00 00 00-00 00 01 00 02 02 28 ..( 3432:error:14102410:SSL routines:DTLS1_READ_BYTES:sslv3 alert handshake failure:.\ssl\d1_pkt.c:1020:SSL alert number 40 3432:error:1410C0E5:SSL routines:DTLS1_WRITE_APP_DATA_BYTES:ssl handshake failure:.\ssl\d1_pkt.c:1231:
[openssl.org #2144] DTLS handshake failure in openssl-0.9.8-stable-SNAP-20100116
I've committed a fix for this. The updated code for renegotiation broke the DTLS code. Steve. -- Dr Stephen N. Henson. OpenSSL project core developer. Commercial tech support now available see: http://www.openssl.org __ OpenSSL Project http://www.openssl.org Development Mailing List openssl-dev@openssl.org Automated List Manager majord...@openssl.org