Re: [openssl-users] File signing/encrypting upgrade from 1.0.2 to 1.1.0

2018-03-23 Thread Jan Kohnert 
Am Fri, 23 Mar 2018 21:22:02 +
schrieb Matt Caswell :

> Also what happens if you change this line:
> 
>bioCryptedData = BIO_new_file("testfile.crypt", "w");
> 
> to
> 
>bioCryptedData = BIO_new_file("testfile.crypt", "wb");

good point, thanks. I'll test that on Monday and report back.

Best regards Jan
-- 
openssl-users mailing list
To unsubscribe: https://mta.openssl.org/mailman/listinfo/openssl-users

Re: [openssl-users] File signing/encrypting upgrade from 1.0.2 to 1.1.0

2018-03-23 Thread Jan Kohnert 
Hi,

Am Fri, 23 Mar 2018 18:32:28 +
schrieb "Salz, Rich via openssl-users" :

> How big is the file?  Could it be bigger than 32 vs 64 bit platforms?

the testfile in the zip is only a few bytes. The problem exists for
larger files, too (I didn't try *really* large files, though)

Best regards Jan
-- 
openssl-users mailing list
To unsubscribe: https://mta.openssl.org/mailman/listinfo/openssl-users

Re: [openssl-users] File signing/encrypting upgrade from 1.0.2 to 1.1.0

2018-03-23 Thread Jan Kohnert 
Hi,

Am Fri, 23 Mar 2018 21:14:30 +
schrieb Matt Caswell :

> Your minimal working example only does the encrypt side. Please could
> you show the decrypt side too that demonstrates the error.

The problem is on the encryption/signing side: the signed/encrypted
files are broken. 

A test on the files generated by the demonstration code can be done via
the openssl binary:

openssl smime -decrypt -inform DER -in testfile.crypt -inkey local.key
-out test.s

fails with the reported error for encryption/signing done using the
provided code on the Windows platform for version 1.1.0.

Best regards Jan
-- 
openssl-users mailing list
To unsubscribe: https://mta.openssl.org/mailman/listinfo/openssl-users

Re: [openssl-users] File signing/encrypting upgrade from 1.0.2 to 1.1.0

2018-03-23 Thread Matt Caswell 


On 23/03/18 17:03, Jan Kohnert wrote:
> Hello,
> 
> I'm using the openssl-libs for signing/encrypting files in PKCS#7 
> format. When trying to upgrade from 1.0.2 to 1.1.0 the code stops 
> working properly: Files are generated, but the formating is broken.
> When trying to decrypt the generated files, I get:
> 
> Error in encoding
> 6252:error:0D07209B:asn1 encoding routines:ASN1_get_object:too 
> long:crypto\asn1\asn1_lib.c:91:
> 
> (that's it, really).
> 
> Could you please point me to what I'm missing? I have tried to find 
> something useful in changslogs and docs, but I couldn't find a helping
> hint (and I don't really know what t look for, too)
> 
> I have made a minimal working example as well as a small testfile and 
> test key/cert in the attached zip-file (should compile on all platforms 
> supported by openssl). But beware: absolutly *no* error-checking at all 
> in there, it is assumed, all is in the same place, testfile, key, cert, 
> and program.
> 
> Thanks a lot, and a happy weekend! :)

Also what happens if you change this line:

   bioCryptedData = BIO_new_file("testfile.crypt", "w");

to

   bioCryptedData = BIO_new_file("testfile.crypt", "wb");


Matt
-- 
openssl-users mailing list
To unsubscribe: https://mta.openssl.org/mailman/listinfo/openssl-users

Re: [openssl-users] File signing/encrypting upgrade from 1.0.2 to 1.1.0

2018-03-23 Thread Matt Caswell 
Your minimal working example only does the encrypt side. Please could
you show the decrypt side too that demonstrates the error.

Matt


On 23/03/18 18:25, Jan Kohnert wrote:
> Hi again,
> 
> Am Fri, 23 Mar 2018 18:03:17 +0100
> schrieb Jan Kohnert :
> 
>> I'm using the openssl-libs for signing/encrypting files in PKCS#7 
>> format. When trying to upgrade from 1.0.2 to 1.1.0 the code stops 
>> working properly: Files are generated, but the formating is broken.
>> When trying to decrypt the generated files, I get:
>>
>> Error in encoding
>> 6252:error:0D07209B:asn1 encoding routines:ASN1_get_object:too 
>> long:crypto\asn1\asn1_lib.c:91:
> 
> I just compiled the code on Linux (with the small changes to let it
> compile and link), and it works for 1.1.0g, so it seems to be a
> Windows-specific problem (I can reproduce that in 32 and 64bit Win).
> Bug?
> 
> Best regards, Jan
> 
-- 
openssl-users mailing list
To unsubscribe: https://mta.openssl.org/mailman/listinfo/openssl-users

Re: [openssl-users] File signing/encrypting upgrade from 1.0.2 to 1.1.0

2018-03-23 Thread Salz, Rich via openssl-users 
Did you specify the -md flag on either/both?
https://www.openssl.org/docs/faq.html#USER3



-- 
openssl-users mailing list
To unsubscribe: https://mta.openssl.org/mailman/listinfo/openssl-users

Re: [openssl-users] File signing/encrypting upgrade from 1.0.2 to 1.1.0

2018-03-23 Thread Sergio NNX 
I've just built it (manually) on Windows and I don't see any error messages.


A few points/questions:


- Why cmake?

- I does not build/compile at all.

- Why is this line here: #include  ? I get a compilation 
error! 

- Why are we adding these libraries: odbc32 advapi32 ?



CMake Error at CMakeLists.txt:9 (find_package):
  By not providing "FindOpenSSLSyn.cmake" in CMAKE_MODULE_PATH this project
  has asked CMake to find a package configuration file provided by
  "OpenSSLSyn", but CMake did not find one.

  Could not find a package configuration file provided by "OpenSSLSyn"
  (requested version 1.1.0) with any of the following names:

OpenSSLSynConfig.cmake
opensslsyn-config.cmake

  Add the installation prefix of "OpenSSLSyn" to CMAKE_PREFIX_PATH or set
  "OpenSSLSyn_DIR" to a directory containing one of the above files.  If
  "OpenSSLSyn" provides a separate development package or SDK, be sure it has
  been installed.


-- Configuring incomplete, errors occurred!




From: openssl-users  on behalf of Jan 
Kohnert 
Sent: Saturday, 24 March 2018 5:25 AM
To: openssl-users@openssl.org
Subject: Re: [openssl-users] File signing/encrypting upgrade from 1.0.2 to 1.1.0

Hi again,

Am Fri, 23 Mar 2018 18:03:17 +0100
schrieb Jan Kohnert :

> I'm using the openssl-libs for signing/encrypting files in PKCS#7
> format. When trying to upgrade from 1.0.2 to 1.1.0 the code stops
> working properly: Files are generated, but the formating is broken.
> When trying to decrypt the generated files, I get:
>
> Error in encoding
> 6252:error:0D07209B:asn1 encoding routines:ASN1_get_object:too
> long:crypto\asn1\asn1_lib.c:91:

I just compiled the code on Linux (with the small changes to let it
compile and link), and it works for 1.1.0g, so it seems to be a
Windows-specific problem (I can reproduce that in 32 and 64bit Win).
Bug?

Best regards, Jan
--
openssl-users mailing list
To unsubscribe: https://mta.openssl.org/mailman/listinfo/openssl-users
openssl-users Info Page
mta.openssl.org
This mailing list is for discussion among those using the OpenSSL software. To 
see the collection of prior postings to the list, visit the openssl-users 
Archives


-- 
openssl-users mailing list
To unsubscribe: https://mta.openssl.org/mailman/listinfo/openssl-users

Re: [openssl-users] File signing/encrypting upgrade from 1.0.2 to 1.1.0

2018-03-23 Thread Salz, Rich via openssl-users 
How big is the file?  Could it be bigger than 32 vs 64 bit platforms?

-- 
openssl-users mailing list
To unsubscribe: https://mta.openssl.org/mailman/listinfo/openssl-users

Re: [openssl-users] File signing/encrypting upgrade from 1.0.2 to 1.1.0

2018-03-23 Thread Jan Kohnert 
Hi again,

Am Fri, 23 Mar 2018 18:03:17 +0100
schrieb Jan Kohnert :

> I'm using the openssl-libs for signing/encrypting files in PKCS#7 
> format. When trying to upgrade from 1.0.2 to 1.1.0 the code stops 
> working properly: Files are generated, but the formating is broken.
> When trying to decrypt the generated files, I get:
> 
> Error in encoding
> 6252:error:0D07209B:asn1 encoding routines:ASN1_get_object:too 
> long:crypto\asn1\asn1_lib.c:91:

I just compiled the code on Linux (with the small changes to let it
compile and link), and it works for 1.1.0g, so it seems to be a
Windows-specific problem (I can reproduce that in 32 and 64bit Win).
Bug?

Best regards, Jan
-- 
openssl-users mailing list
To unsubscribe: https://mta.openssl.org/mailman/listinfo/openssl-users

Re: [openssl-users] DTLS over UDP

2018-03-23 Thread Nivedita 
Hi Michael,

 We are working on SIP , and i am looking for dtlsv1_accept method so that
when multiple clients want to connect to single server, dtls should open a
separate port for each client instance, when running over udp.

Regards,
Nivedita


On Wed, Mar 21, 2018 at 11:04 PM, Michael Richardson 
wrote:

>
> Nivedita  wrote:
> > Would you please let me  know whether this  new release of
> > openssl-1.1.1-pre3  supports DTLS over udp for SIP protocol using
> > dtlsv1_accept method.
>
> No.  I will be rebasing very soon.
> (I'm a contributor like you)
>
> Even the basic BIO patches that I was working on were not yet accepted, as
> I
> guess I need to validate that it compiles on VMS.
> I hope to get an accout soon that I can use to verify things.
>
> BTW: Are you speaking about *SIP* or *RTP?  My impression is that the
>  existing API was designed specifically for SRTP.
>
> --
> ]   Never tell me the odds! | ipv6 mesh
> networks [
> ]   Michael Richardson, Sandelman Software Works| network
> architect  [
> ] m...@sandelman.ca  http://www.sandelman.ca/|   ruby on
> rails[
>
>
-- 
openssl-users mailing list
To unsubscribe: https://mta.openssl.org/mailman/listinfo/openssl-users