Re: Ooops!
Bodo Moeller wrote: Ben Laurie [EMAIL PROTECTED]: I'm pretty damn confident it won't break the release, being as it is all new code. It may not work itself, but it shouldn't touch anything that exists already! OK, its barely possible it might cause compile problems. It would be the first code in OpenSSL to use timegm(), which I believe is non-standard. I fear you may be right there. So if you manage to compile this on all platforms that have already been tested with one of the betas ... I surrender! Cheers, Ben. -- SECURE HOSTING AT THE BUNKER: http://www.thebunker.net/hosting.htm http://www.apache-ssl.org/ben.html Coming to ApacheCon? http://ApacheCon.Com/ __ OpenSSL Project http://www.openssl.org Development Mailing List [EMAIL PROTECTED] Automated List Manager [EMAIL PROTECTED]
Re: Ooops!
ben I know I shouldn't have left this until now, but I'd quite like to ben commit this change I've accidentally left lying around, which allows a ben certificate age check: I can't tell you what to do, but I'd prefer if you didn't before the release. Your call. -- Richard Levitte \ Spannvägen 38, II \ [EMAIL PROTECTED] Chairman@Stacken \ S-168 35 BROMMA \ T: +46-8-26 52 47 Redakteur@Stacken \ SWEDEN \ or +46-708-26 53 44 Procurator Odiosus Ex Infernis -- [EMAIL PROTECTED] Member of the OpenSSL development team Unsolicited commercial email is subject to an archival fee of $400. See http://www.stacken.kth.se/~levitte/mail/ for more info. __ OpenSSL Project http://www.openssl.org Development Mailing List [EMAIL PROTECTED] Automated List Manager [EMAIL PROTECTED]
Re: Ooops!
Richard Levitte - VMS Whacker wrote: ben I know I shouldn't have left this until now, but I'd quite like to ben commit this change I've accidentally left lying around, which allows a ben certificate age check: I can't tell you what to do, but I'd prefer if you didn't before the release. Your call. Ah, but you can - or I wouldn't have asked. :-) Cheers, Ben. -- SECURE HOSTING AT THE BUNKER: http://www.thebunker.net/hosting.htm http://www.apache-ssl.org/ben.html Coming to ApacheCon? http://ApacheCon.Com/ __ OpenSSL Project http://www.openssl.org Development Mailing List [EMAIL PROTECTED] Automated List Manager [EMAIL PROTECTED]
Re: Ooops!
Ben Laurie wrote: Richard Levitte - VMS Whacker wrote: ben I know I shouldn't have left this until now, but I'd quite like to ben commit this change I've accidentally left lying around, which allows a ben certificate age check: I can't tell you what to do, but I'd prefer if you didn't before the release. Your call. Ah, but you can - or I wouldn't have asked. :-) Well it depends on whether you are prepared for the consequences of various people being sent round with assorted blunt and sharp instruments if it breaks the release... So it's you call :-) Steve. -- Dr Stephen N. Henson. http://www.drh-consultancy.demon.co.uk/ Personal Email: [EMAIL PROTECTED] Senior crypto engineer, Celo Communications: http://www.celocom.com/ Core developer of the OpenSSL project: http://www.openssl.org/ Business Email: [EMAIL PROTECTED] PGP key: via homepage. __ OpenSSL Project http://www.openssl.org Development Mailing List [EMAIL PROTECTED] Automated List Manager [EMAIL PROTECTED]
Re: Ooops!
ben Ah, but you can - or I wouldn't have asked. :-) In that case, I trust my statement of preference was enough :-) -- Richard Levitte \ Spannvägen 38, II \ [EMAIL PROTECTED] Chairman@Stacken \ S-168 35 BROMMA \ T: +46-8-26 52 47 Redakteur@Stacken \ SWEDEN \ or +46-708-26 53 44 Procurator Odiosus Ex Infernis -- [EMAIL PROTECTED] Member of the OpenSSL development team Unsolicited commercial email is subject to an archival fee of $400. See http://www.stacken.kth.se/~levitte/mail/ for more info. __ OpenSSL Project http://www.openssl.org Development Mailing List [EMAIL PROTECTED] Automated List Manager [EMAIL PROTECTED]
Re: Ooops!
Ben Laurie wrote: Richard Levitte - VMS Whacker wrote: ben I know I shouldn't have left this until now, but I'd quite like to ben commit this change I've accidentally left lying around, which allows a ben certificate age check: I can't tell you what to do, but I'd prefer if you didn't before the release. Your call. Ah, but you can - or I wouldn't have asked. :-) BTW you are assuming the certificate date is UTCTime, some examples exist that use GeneralizedTime... Steve. -- Dr Stephen N. Henson. http://www.drh-consultancy.demon.co.uk/ Personal Email: [EMAIL PROTECTED] Senior crypto engineer, Celo Communications: http://www.celocom.com/ Core developer of the OpenSSL project: http://www.openssl.org/ Business Email: [EMAIL PROTECTED] PGP key: via homepage. __ OpenSSL Project http://www.openssl.org Development Mailing List [EMAIL PROTECTED] Automated List Manager [EMAIL PROTECTED]
Re: Ooops!
Dr Stephen Henson wrote: Ben Laurie wrote: Richard Levitte - VMS Whacker wrote: ben I know I shouldn't have left this until now, but I'd quite like to ben commit this change I've accidentally left lying around, which allows a ben certificate age check: I can't tell you what to do, but I'd prefer if you didn't before the release. Your call. Ah, but you can - or I wouldn't have asked. :-) Well it depends on whether you are prepared for the consequences of various people being sent round with assorted blunt and sharp instruments if it breaks the release... So it's you call :-) I'm pretty damn confident it won't break the release, being as it is all new code. It may not work itself, but it shouldn't touch anything that exists already! OK, its barely possible it might cause compile problems. Cheers, Ben. -- SECURE HOSTING AT THE BUNKER: http://www.thebunker.net/hosting.htm http://www.apache-ssl.org/ben.html Coming to ApacheCon? http://ApacheCon.Com/ __ OpenSSL Project http://www.openssl.org Development Mailing List [EMAIL PROTECTED] Automated List Manager [EMAIL PROTECTED]
Re: Ooops!
On Sun, Feb 27, 2000 at 06:37:57PM +0100, Richard Levitte - VMS Whacker wrote: I can't tell you what to do, but I'd prefer if you didn't before the release. Your call. Me too. Or else delay the release for a day or two so it can be tested on all those compilers. __ OpenSSL Project http://www.openssl.org Development Mailing List [EMAIL PROTECTED] Automated List Manager [EMAIL PROTECTED]
Re: Ooops!
Ulf Möller wrote: On Sun, Feb 27, 2000 at 06:37:57PM +0100, Richard Levitte - VMS Whacker wrote: I can't tell you what to do, but I'd prefer if you didn't before the release. Your call. Me too. Or else delay the release for a day or two so it can be tested on all those compilers. I'm not going to push it. If people want it to be in, then I'll put it in and we can delay the release. If they don't, I can easily live without it. I have to say I don't think it is worth delaying for. Cheers, Ben. -- SECURE HOSTING AT THE BUNKER: http://www.thebunker.net/hosting.htm http://www.apache-ssl.org/ben.html Coming to ApacheCon? http://ApacheCon.Com/ __ OpenSSL Project http://www.openssl.org Development Mailing List [EMAIL PROTECTED] Automated List Manager [EMAIL PROTECTED]
Re: Ooops!
Dr Stephen Henson wrote: Ben Laurie wrote: Richard Levitte - VMS Whacker wrote: ben I know I shouldn't have left this until now, but I'd quite like to ben commit this change I've accidentally left lying around, which allows a ben certificate age check: I can't tell you what to do, but I'd prefer if you didn't before the release. Your call. Ah, but you can - or I wouldn't have asked. :-) BTW you are assuming the certificate date is UTCTime, some examples exist that use GeneralizedTime... I believe x509 (the program) was making the same assumption, but it would be more correct to handle both, of course :-) Cheers, Ben. -- SECURE HOSTING AT THE BUNKER: http://www.thebunker.net/hosting.htm http://www.apache-ssl.org/ben.html Coming to ApacheCon? http://ApacheCon.Com/ __ OpenSSL Project http://www.openssl.org Development Mailing List [EMAIL PROTECTED] Automated List Manager [EMAIL PROTECTED]