[openssl-dev] [openssl.org #4609] Configure does not honor requests for ld.gold

alue' arguments. This has been pointed out quite a few times already. That being said, have you tried the following (the configuration scripts will assume that any argument starting with a dash that they don't understand internally are to be taken as C flags... this too has been pointed out before)?

[openssl-dev] [openssl.org #4602] Missing accessors

_STORE_CTX setters should really be made available (perhaps with the exception of the verify and verify_cb ones). Doesn't it make more sense to set those function pointers when creating the X509_STORE itself? Why would those functions need to be changed in the context? Cheers, Richard -- Richard Levitte

[openssl-dev] [openssl.org #4602] Missing accessors

ointers that leads to user code, I can see scenarios where it does make sense. For this case, I've only considered X509_STORE. -- Richard Levitte levi...@openssl.org -- Ticket here: http://rt.openssl.org/Ticket/Display.html?id=4602 Please log in as guest with password guest if prompted -- open

[openssl-dev] [openssl.org #4602] Missing accessors

't begin to imagine the consequences of letting external code manipulate this. I understand that in some cases, it seems easy and quick, but... So, if someone else wants to have a go at this and can make something sensible, please be my guest. Me, I'm backing off from this particular idea. Cheers

[openssl-dev] [openssl.org #4602] Missing accessors

X509_STORE_CTX_check_issued > check_issued); > X509_STORE_CTX_check_issued > X509_STORE_CTX_get_check_issued(X509_STORE_CTX *ctx); For this part, https://github.com/openssl/openssl/pull/1294 -- Richard Levitte levi...@openssl.org -- Ticket here: http://rt.openssl.org/Ticket/Display.html?id=4602 Please log in as gue

[openssl-dev] [openssl.org #4602] Missing accessors

opaque > structs are missing. E.g. > > /* Add to some header file */ > > CRYPTO_RWLOCK *X509_STORE_get_lock(X509_STORE *ctx); > > /* Add to some implementation file */ > > /* Add to crypto/x509/x509_lu.c */ > > CRYPTO_RWLOCK *X509_STORE_get_lock(X509_STORE *v) > { &g

[openssl-dev] [openssl.org #4606] BUG: Windows Startup Code in OpenSSL RAND_poll() Is Ineffective

On Tue Jul 05 22:38:44 2016, ncarb...@prodigitalsoftware.com wrote: > Knowing that made all the difference, thank you. It wasn't clear since > there's some evidence of "2.0" in the various downloads. That's "openssl-fips" which is a FIPS module. Separate thing with its o

[openssl-dev] [openssl.org #4604] Missing includes for ARM on Android

nce to > `tcgetattr' > jni/openssl/lib/mips/libcrypto.a(ui_openssl.o): In function > `read_string_inner': > ui_openssl.c:(.text.read_string_inner+0xf0): undefined reference to > `signal' > ui_openssl.c:(.text.read_string_inner+0x2c0): undefined reference to > `tcsetattr' > ui_openssl.

[openssl-dev] [openssl.org #4598] OpenSSL fails to Configure on Windows 10

On Fri Jul 01 23:31:45 2016, noloa...@gmail.com wrote: > On Wed, Jun 29, 2016 at 5:19 PM, Richard Levitte via RT > <r...@openssl.org> wrote: > > This has nothing to do with Windows 10 per se, it's the space-in- > > directory > > issue that's come back. > > I

Re: [openssl-dev] [openssl.org #4601] install_sw does not honor --openssldir

choosing :) Then configure with --prefix -- Richard Levitte levi...@openssl.org OpenSSL Project http://www.openssl.org/~levitte/ -- openssl-dev mailing list To unsubscribe: https://mta.openssl.org/mailman/listinfo/openssl-dev

Re: [openssl-dev] [openssl.org #4601] install_sw does not honor --openssldir

[taking this out of RT] In message <rt-4.0.19-24183-1467300594-398.4601-...@openssl.org> on Thu, 30 Jun 2016 15:29:54 +, "noloa...@gmail.com via RT" <r...@openssl.org> said: noloader> On Thu, Jun 30, 2016 at 11:12 AM, Richard Levitte via RT <r...@openssl.or

[openssl-dev] [openssl.org #4601] install_sw does not honor --openssldir

p dir) > no-fuzz-afl [default] OPENSSL_NO_FUZZ_AFL (skip dir) > no-fuzz-libfuzzer [default] OPENSSL_NO_FUZZ_LIBFUZZER (skip dir) > no-heartbeats [default] OPENSSL_NO_HEARTBEATS (skip dir) > no-md2 [default] OPENSSL_NO_MD2 (skip dir) > no-rc5 [default] OPENSSL_NO_RC5 (skip

[openssl-dev] [openssl.org #1852] Invalid Proxy Certificates Pass Validation

ressed. > > > > > > Perhaps reopen this one. > > > > This has now been fixed in master, along with a pc pathlength checking > > bug fix. > > > > The backport to 1.0.2 (and possibly 1.0.1) is still pending review. > > Fix merged into 1.0.2 ... and fin

[openssl-dev] [openssl.org #4598] OpenSSL fails to Configure on Windows 10

NO_UNIT_TEST (skip dir) > no-weak-ssl-ciphers [default] OPENSSL_NO_WEAK_SSL_CIPHERS (skip > dir) > no-zlib [default] > no-zlib-dynamic [default] > Configuring for VC-WIN32 > mkdir C:\Users\Jeffrey: Permission denied; Access is denied at > .\Configure line 1314. > >

[openssl-dev] [openssl.org #1852] Invalid Proxy Certificates Pass Validation

ngth checking > bug fix. > > The backport to 1.0.2 (and possibly 1.0.1) is still pending review. Fix merged into 1.0.2 Cheers, Richard -- Richard Levitte levi...@openssl.org -- Ticket here: http://rt.openssl.org/Ticket/Display.html?id=1852 Please log in as guest with password guest if prompted -- openssl-dev mailing list To unsubscribe: https://mta.openssl.org/mailman/listinfo/openssl-dev

Re: [openssl-dev] global OpenSSL symbols in user apps

In message <5772803f.3060...@openssl.org> on Tue, 28 Jun 2016 14:48:47 +0100, Matt Caswell <m...@openssl.org> said: matt> matt> matt> On 28/06/16 14:41, Richard Levitte wrote: matt> > Practically speaking, it depends. Provided we're talking about shared matt>

Re: [openssl-dev] global OpenSSL symbols in user apps

ith the non-public symbols. You may be safe in one OpenSSL version, but you cannot know what's happening with them in the next. Cheers, Richard -- Richard Levitte levi...@openssl.org OpenSSL Project http://www.openssl.org/~levitte/ -- openssl-dev mailing list To unsubscribe: https://mta.openssl.org/mailman/listinfo/openssl-dev

Re: [openssl-dev] prefer headers from source tree

Hey, good point, and good simple patch. Applied and committed to master. Cheers Richard In message <576efcab.5010...@roumenpetrov.info> on Sun, 26 Jun 2016 00:50:35 +0300, Roumen Petrov said: openssl> Hello, openssl> openssl> Build of master branch fail of on

[openssl-dev] [openssl.org #4581] [1.0.2] Running tests in parallel results in failure

> .cast base64 > ++ > ..cast-cbc > ..testing req conversions > ..p -> d > ...cast-cbc base64 > .Makefile:237: recipe for target 'test_req' failed > make[1]: *** [test_re

[openssl-dev] [openssl.org #1852] [BUG] Invalid Proxy Certificates Pass Validation

ntics > applications expect), then this issue remains to be addressed. > > Perhaps reopen this one. This has now been fixed in master, along with a pc pathlength checking bug fix. The backport to 1.0.2 (and possibly 1.0.1) is still pending review. Cheers, Richard -- Richard Levitte levi.

Re: [openssl-dev] Current github 1.1-pre: installation broken (doc symlinks)

2_Init.html: uri> Too many levels of symbolic links uri> make: *** [install_html_docs] Error 1 I suggest you do this first: rm -rf /Users/ur20980/src/openssl-1.1/share/doc/openssl There's a bit of documentation restructuring going on, so you probably have old clutter that disturbs th

[openssl-dev] [openssl.org #4575] 1.0.2 stable branch: .\apps\speed.c(335): error C2065: 'err': undeclared identifier

ared identifier > > The responsible commit is > > https://github.com/openssl/openssl/commit/75f90688fb2dec0f897cad8be8b92be725c5016b > > - ExitProcess(ret); > + TerminateProcess(GetCurrentProcess(), err); > > Simon -- Richard Levitte levi...@openssl.org -- Ticket here: ht

Re: [openssl-dev] Split libcrypto.so for coreutils optimization

e to do a bit of duplication so the same object files get placed in both libraries, libcrypto and libcryptosum. There's a bit more work to do to complete this scheme, but there's at least your starting point. The API is declared in include/openssl/sha.h Cheers, Richard -- Richard Levitte lev

[openssl-dev] [openssl.org #4567] Configure does not honor CFLAGS

Cool. That closes this ticket. BTW, you're right, we don't honor a CFLAGS env var. We never did. We take the cflags on the configuration command line. Cheers, Richard On Tue Jun 14 07:35:11 2016, noloa...@gmail.com wrote: > On Tue, Jun 14, 2016 at 3:33 AM, Richard Levitte via RT &

[openssl-dev] [openssl.org #4567] Configure does not honor CFLAGS

... > CC =gcc > CFLAG =-m64 -Wall -DL_ENDIAN -O3 -pthread -DFILIO_H -Wa,-- > noexecstack > SHARED_CFLAG =-fPIC > ... -- Richard Levitte levi...@openssl.org -- Ticket here: http://rt.openssl.org/Ticket/Display.html?id=4567 Please log in as guest with password guest if prompted -- openssl-dev mailing list To unsubscribe: https://mta.openssl.org/mailman/listinfo/openssl-dev

[openssl-dev] [openssl.org #3772] Bug: Only ActivePerl could be used to build on Windows

successfully built openssl with Perl distributed with Git as well > as > Strawberry Perl. -- Richard Levitte levi...@openssl.org -- Ticket here: http://rt.openssl.org/Ticket/Display.html?id=3772 Please log in as guest with password guest if prompted -- openssl-dev mailing list To unsubscribe: https://mta.openssl.org/mailman/listinfo/openssl-dev

Re: [openssl-dev] Out-of-tree build?

In message

[openssl-dev] [openssl.org #4557] Nit: temporary files left over after [master:8d054a5] installation process

TERS- > -BEGIN SSL SESSION PARAMETERS- > -BEGIN SSL SESSION PARAMETERS- > -BEGIN SSL SESSION PARAMETERS- > -BEGIN SSL SESSION PARAMETERS- > -BEGIN SSL SESSION PARAMETERS- > -BEGIN SSL SESSION PARAMETERS- > > --steffen > -- Richard Le

[openssl-dev] [openssl.org #4556] Unknown: mysterious perl(1) error during [master:8d054a5] installation process

ess afaik. Are you sure that you don't have perl modules that you installed separately with an earlier perl version? You may need to update those. Either way, this is not an OpenSSL issue, it's a perl one. Closing this ticket. -- Richard Levitte levi...@openssl.org -- Ticket here: http://rt.openssl

[openssl-dev] [openssl.org #4555] Enhancement request: allow installation without manuals, but anyway without HTML manuals

On Thu Jun 02 15:50:31 2016, stef...@sdaoden.eu wrote: > Oh yes, please! The 'install' target calls three other targets: install_sw install_ssldirs install_docs So if you simple do 'make install_sw' or 'nmake install_sw', I think you'll get what you want. Closing this ticket. -- Rich

[openssl-dev] [openssl.org #4549] powerpc test problem: missing symbols

ontain global symbols > # The output we got is in Unix .map format, which has a global > > I make a proper pull req later… > > Sebastian -- Richard Levitte levi...@openssl.org -- Ticket here: http://rt.openssl.org/Ticket/Display.html?id=4549 Please log in as guest with password guest if prompted -- openssl-dev mailing list To unsubscribe: https://mta.openssl.org/mailman/listinfo/openssl-dev

[openssl-dev] [openssl.org #4553] Re: Fedora 1, i386: error: field `next_timeout` has incomplete type

On Wed Jun 01 22:45:08 2016, noloa...@gmail.com wrote: > On Wed, Jun 1, 2016 at 4:47 PM, Richard Levitte via RT > <r...@openssl.org> wrote: > > Please give us the full configuration command you used, including > > environment > > variables that may affect it. Just th

[openssl-dev] [openssl.org #4553] Re: Fedora 1, i386: error: field `next_timeout` has incomplete type

Does it make a difference if you add 'no-sse2' to your configuration command? On Wed Jun 01 21:22:24 2016, noloa...@gmail.com wrote: > On Wed, Jun 1, 2016 at 4:47 PM, Richard Levitte via RT > <r...@openssl.org> wrote: > > Please give us the full configuration command y

[openssl-dev] [openssl.org #4553] Re: Fedora 1, i386: error: field `next_timeout` has incomplete type

/x_attrib.o crypto/x509/x_crl.o crypto/x509/x_exten.o > > crypto/x509/x_name.o crypto/x509/x_req.o crypto/x509/x_x509.o > > crypto/x509/x_x509a.o crypto/x509v3/pcy_cache.o > > crypto/x509v3/pcy_data.o crypto/x509v3/pcy_lib.o > > crypto/x509v3/pcy_map.o crypto/x509v3/pcy_node.o

[openssl-dev] [openssl.org #4434] Gentoo 13, x86_64: 4 failed self tests

... ok > ../test/recipes/90-test_threads.t .. ok > ../test/recipes/90-test_v3name.t ... ok > > Test Summary Report > --- > ../test/recipes/30-test_afalg.t (Wstat: 256 Tests: 1 Failed: 1) > Failed test: 1 > Non-zero exit status: 1 > Files=80, T

[openssl-dev] [openssl.org #4458] "implicitly declared function" warnings due to missing include

gt; apps/ca.c > > apps/ocsp.c > > apps/rehash.c > > apps/s_server.c > > crypto/asn1/ameth_lib.c > > crypto/engine/tb_asnmth.c > > crypto/o_str.c > > crypto/x509v3/v3_ncons.c > > crypto/x509v3/v3_tlsf.c > > crypto/x509v3/v3_utl.c > > e_os.h

[openssl-dev] [openssl.org #4552] Bug report: hex string is too long, problem in set_hex()?

ntended recipient (or have received > this communication in error) please notify the sender immediately and > destroy this communication. Any unauthorized copying, disclosure or > distribution of the material in this communication is strictly > forbidden. > > Deutsche Bank does not rende

[openssl-dev] [openssl.org #4457] apps/apps.c and apps/ocsp.c needs for fd_set

On Tue May 31 18:26:56 2016, rs...@akamai.com wrote: > Since it 'just works' for now, maybe remove the 1.1 milestone? > I agree. Making it post-1.1.0 -- Richard Levitte levi...@openssl.org -- Ticket here: http://rt.openssl.org/Ticket/Display.html?id=4457 Please log in as guest with pa

[openssl-dev] [openssl.org #4457] apps/apps.c and apps/ocsp.c needs for fd_set

belonging with it (except timeval). http://pubs.opengroup.org/onlinepubs/9699919799/functions/select.html So this is a bigger issue than just Fedora 1, we're just lucky that most platforms still have select() in unistd.h as well... -- Richard Levitte levi...@openssl.org -- Ticket h

[openssl-dev] [openssl.org #4487] Dirty compile under Windows 7 and MSVC 2012 (four to six non-trivial)

On Tue May 31 17:14:12 2016, rsalz wrote: > We fixed the naming issue for unlink et al. Can this ticket be closed? I'll do another check, just to make sure. -- Richard Levitte levi...@openssl.org -- Ticket here: http://rt.openssl.org/Ticket/Display.html?id=4487 Please log in as gu

[openssl-dev] [openssl.org #4473] Compile errors when compiling with C++ compiler

re all okay, they just have > pre-processor directives in them. -- Richard Levitte levi...@openssl.org -- Ticket here: http://rt.openssl.org/Ticket/Display.html?id=4473 Please log in as guest with password guest if prompted -- openssl-dev mailing list To unsubscribe: https://mta.openssl.org

[openssl-dev] [openssl.org #4486] PATCH: fix NMAKE fatal error U1073: "don't know how to make 'LNAME\openssl\Configurations\windows-makefile.tmpl'"

de -c /Focrypto\aes\aes_cfb.obj crypto\aes\aes_cfb.c > > > aes_cfb.c > > > cl -DDSO_WIN32 -DOPENSSL_THREADS -DOPENSSL_NO_DYNAMIC_ENGINE > > > -DOPENSSL_P > > > IC -DOPENSSL_BN_ASM_PART_WORDS -DOPENSSL_IA32_SSE2 > > > -DOPENSSL_BN_ASM_MONT -DOPENS &

[openssl-dev] [openssl.org #4311] OpenSSL 1.1.0-pre3: quote PERL=$(PERL) in Makefiles

On Wed May 11 10:51:46 2016, rainer.j...@kippdata.de wrote: > Am 10.05.2016 um 21:54 schrieb Richard Levitte via RT: > > I understand this part. What I'm questioning is the need to set PERL > > to > > "/usr/bin/env perl" to begin with. It's practically not differ

[openssl-dev] [openssl.org #4488] PATCH: fix Windows "The POSIX name for this item is deprecated. Instead, use the ISO C++ conformant name..."

This has made it to master. Closing this ticket. Cheers, Richard On Wed May 25 21:42:40 2016, levitte wrote: > Patch applied, https://github.com/openssl/openssl/pull/1129 > > Furthermore, I merged ticket 4488 and 4489, because the solution is > all in the > same commit. > >

[openssl-dev] [openssl.org #4458] "implicitly declared function" warnings due to missing include

o/x509v3/v3_tlsf.c > crypto/x509v3/v3_utl.c > e_os.h > include/internal/o_str.h > ssl/ssl_conf.c > test/ssltest.c > test/v3nametest.c > -- Richard Levitte levi...@openssl.org -- Ticket here: http://rt.openssl.org/Ticket/Display.html?id=4458 Please log in as guest with passw

[openssl-dev] [openssl.org #4488] PATCH: fix Windows "The POSIX name for this item is deprecated. Instead, use the ISO C++ conformant name..."

Patch applied, https://github.com/openssl/openssl/pull/1129 Furthermore, I merged ticket 4488 and 4489, because the solution is all in the same commit. -- Richard Levitte levi...@openssl.org -- Ticket here: http://rt.openssl.org/Ticket/Display.html?id=4488 Please log in as guest with password

[openssl-dev] [openssl.org #4489] PATCH: fix Windows deprecated strdup in crypto\conf\conf_lib.c

100644 > --- a/e_os.h > +++ b/e_os.h > @@ -520,6 +520,13 @@ struct servent *PASCAL getservbyname(const char > *, const char *); > # if defined(OPENSSL_SYS_WINDOWS) > # define strcasecmp _stricmp > # define strncasecmp _strnicmp > +# if (_MSC_VER >= 1310) > +# define open

Re: [openssl-dev] Current Github build fails

... and has now made it to master. Cheers, richard In message <20160525.205653.1298317536965356146.levi...@openssl.org> on Wed, 25 May 2016 20:56:53 +0200 (CEST), Richard Levitte <levi...@openssl.org> said: levitte> This should solve the problem: levitte> levitte> https

Re: [openssl-dev] Current Github build fails

This should solve the problem: https://github.com/openssl/openssl/pull/1128 Cheers, Richard In message <2084b495-b2bb-4771-b9a8-d811c597c...@openssl.org> on Wed, 25 May 2016 16:58:34 +0200, Richard Levitte <levi...@openssl.org> said: levitte> Yes. There's a bug where the

Re: [openssl-dev] Current Github build fails

Yes. There's a bug where the 'clean' target removes header files generated by Configure. I'll fix later tonight. Cheers Richard "Blumenthal, Uri - 0553 - MITLL" skrev: (25 maj 2016 16:50:00 CEST) >$ ./Configure darwin64-x86_64-cc threads shared zlib

[openssl-dev] [openssl.org #4486] PATCH: fix NMAKE fatal error U1073: "don't know how to make 'LNAME\openssl\Configurations\windows-makefile.tmpl'"

_ASM_GF2m -DSHA1_ASM -DSHA256_ASM -DSHA512_ASM -DMD5_ASM > > -DRMD160_ASM -DAES > > _ASM -DVPAES_ASM -DWHIRLPOOL_ASM -DGHASH_ASM -DECP_NISTZ256_ASM > > -DPOLY1305_ASM " > > -DENGINESDIR=\"%ProgramFiles(x86)%\\OpenSSL\\lib\\engines\"" "- > > DOPENSSLDIR

[openssl-dev] [openssl.org #4492] Configure, Unix and Linux, and malformed command line when path includes spaces

staging_instdir = > > staging_instdir - "A.;" + "[OPENSSL-INSTALL]" > > Configurations/descrip.mms.tmpl: $(PERL) "-I." "-Mvmsconfig" {- > > sourcefile("util", "dofile.pl") -} - > > Configurations/descrip.mms.tmpl: $(PERL) &

[openssl-dev] [openssl.org #1852] [BUG] Invalid Proxy Certificates Pass Validation

I think we should. I have something half baked that Im playing with... Cheers, Richard On Wed Feb 03 13:53:45 2016, rsalz wrote: > Re-opening it. It would be good to decide soon if we should do this. -- Richard Levitte levi...@openssl.org -- Ticket here: http://rt.openssl.org/Tic

[openssl-dev] [openssl.org #4486] PATCH: fix NMAKE fatal error U1073: "don't know how to make 'LNAME\openssl\Configurations\windows-makefile.tmpl'"

\"" -W3 -wd4090 -Gs0 -GF -Gy -nologo > -DOPENSSL_SYS_WI > N32 -DWIN32_LEAN_AND_MEAN -DL_ENDIAN -D_CRT_SECURE_NO_DEPRECATE > -DUNICODE -D_UNI > CODE /MT /Ox /O2 /Ob2 /Zl /Zi /Fdlib -D_WINDLL /I ..\..\Jeffrey /I > Walton\openss > l\include /I . /I crypto\include /I inc

[openssl-dev] [openssl.org #4492] Configure, Unix and Linux, and malformed command line when path includes spaces

"-Mvmsconfig" {- > sourcefile("util", "dofile.pl") -} - > Configurations/descrip.mms.tmpl: $(PERL) "-I." "-Mvmsconfig" {- > sourcefile("util", "dofile.pl") -} - > Configurations/descrip.mms.tmpl: \$(PERL) "-I\$(BUI

Re: [openssl-dev] openssl 1.0.2 SNAPSHOT issue that exists since 20160521

In message <20160524142412.ga6...@doctor.nl2k.ab.ca> on Tue, 24 May 2016 08:24:12 -0600, The Doctor <doc...@doctor.nl2k.ab.ca> said: doctor> On Tue, May 24, 2016 at 12:26:02PM +0200, Richard Levitte wrote: doctor> > In message <20160524070954.ga17...@doctor.nl2k.ab.ca>

Re: [openssl-dev] openssl 1.0.2 SNAPSHOT issue that exists since 20160521

In message <20160524070954.ga17...@doctor.nl2k.ab.ca> on Tue, 24 May 2016 01:09:55 -0600, The Doctor <doc...@doctor.nl2k.ab.ca> said: doctor> On Mon, May 23, 2016 at 10:10:46AM +0200, Richard Levitte wrote: doctor> > In message <20160523070428.ga17...@doctor.nl2k.ab.ca&

Re: [openssl-dev] openssl 1.0.2 SNAPSHOT issue that exists since 20160521

at ./config gives me automagically, and no extra options), please remind me of yours. Cheers, Richard -- Richard Levitte levi...@openssl.org OpenSSL Project http://www.openssl.org/~levitte/ -- openssl-dev mailing list To unsubscribe: https://mta.openssl.org/mailman/listinfo/openssl-dev

[openssl-dev] [openssl.org #1866] openssl verify needs better error reporting

gt; ERR_print_errors(bio_err); > goto end; > } > > The goto jumps to the code which prints the usage. Similarly for other > input files. > > Also, it does not report what went wrong with the input file. > > > v. -- Richard Levitte levi...@openssl.org -- Ticket here: http

[openssl-dev] [openssl.org #1520] request for checking if -in and -out files are same

> did not include the make report output etc (since I am using a pre-built > openssl from my distro). > > Thank you. > > Shriramana Sharma. I keep revisiting this (age old, sorry about that) issue time and again, and I think the proper response is to reject this as a usage issue ra

[openssl-dev] [openssl.org #4543] Bug & fix: building the openssl application with READLINE enabled failsp

Applied. Thank you! On Fri May 20 03:30:19 2016, paul.d...@oracle.com wrote: > The openssl application fails to compile with READLINE defined. > > The fix is attached. > > > -- Richard Levitte levi...@openssl.org -- Ticket here: http://rt.openssl.org/Ticket/Display.html?

Re: [openssl-dev] NO 20160519 SNAPSHOTS

In message <20160519102404.ga1...@doctor.nl2k.ab.ca> on Thu, 19 May 2016 04:24:05 -0600, The Doctor <doc...@doctor.nl2k.ab.ca> said: doctor> What happened? A reboot for a kernel upgrade at the wrong time. My apologies. New snapshot will appear again tomorrow. Cheers, Richa

Re: [openssl-dev] 1.1.0 Build requirement for OpenVMS

were constantly lagging behind, and with all the changes happening in the 1.1.0 development, it became too much of a burden. For a while there, I was seriously considering giving up VMS support entirely. -- Richard Levitte levi...@openssl.org OpenSSL Project http://www.openssl.org

[openssl-dev] [openssl.org #1520] request for checking if -in and -out files are same

ct on POSIX > systems, so perhaps not. Worth a look though? > > Failing that, you could fstat(3) the 2 open files and compare their > st_ino and st_dev fields for equality before writing anything to > either > of them. -- Richard Levitte levi...@openssl.org -- Ticket here:

[openssl-dev] [openssl.org #1466] X.509 name's printing

d source method > ASN1_STRING_print_ex(BIO *out, ASN1_STRING *str, unsigned long flags); > , where flags are > XN_FLAG_RFC2253|ASN1_STRFLGS_ESC_2254 > can be used in generation of "LDAP search filter". > > Roumen > -- Richard Levitte levi...@openssl.org -- Ticket here: htt

[openssl-dev] [openssl.org #2534] Hardcoded MIN_LEN prevents using VALID passphrase from stdin

849:You must type in 4 to 8191 characters > > A forced check like this is questionable, and in the case of not > generating, but just *using* (e.g. decrypting) a password it is > totally unacceptable. > OpenSSL renders my private key unusable. > > Proposal for fixing this issue: remo

[openssl-dev] [openssl.org #2616] Missing initialization in the CHIL engine

roneously fail. > The attached patch fixes this. -- Richard Levitte levi...@openssl.org -- Ticket here: http://rt.openssl.org/Ticket/Display.html?id=2616 Please log in as guest with password guest if prompted -- openssl-dev mailing list To unsubscribe: https://mta.openssl.org/mailman/listinfo/openssl-dev

[openssl-dev] [openssl.org #2558] [patch] make windres controllable via build env var settings

/ $WINDRES env vars as well. > -mike -- Richard Levitte levi...@openssl.org -- Ticket here: http://rt.openssl.org/Ticket/Display.html?id=2558 Please log in as guest with password guest if prompted -- openssl-dev mailing list To unsubscribe: https://mta.openssl.org/mailman/listinfo/openssl-dev

[openssl-dev] [openssl.org #2622] Buffer overflow using UI_add_input_string

program. > > > > $ make LDLIBS=-lcrypto ui > > cc ui.c -lcrypto -o ui > > $ ./ui > > pin_buf[UI_MAX_SECRET_STRING_LENGTH] = 1 > > Enter PIN:ab > > > > strlen(pin_buf) = 2 > > pin_buf = ab > > pin_buf[UI_MAX_SECRET_STRING_LENGTH] = 0 > &

[openssl-dev] [openssl.org #2590] change commonName entry for default openssl config file

ough I confess this is just based on a diff without looking too closely. > This is of course very minor, but an easy change so I hope you'll consider > it to save lots of future idiots like me 30 seconds. > > (I am running Ubuntu 10.04 (old!) at the moment, and peeked at the source > co

[openssl-dev] [openssl.org #2611] [PATCH] Support of TLSv1 in s_time

n SSLv2 is disabled at > compile time, I have kept this semantic. > -- Richard Levitte levi...@openssl.org -- Ticket here: http://rt.openssl.org/Ticket/Display.html?id=2611 Please log in as guest with password guest if prompted -- openssl-dev mailing list To unsubscribe: https://mta.openssl.org/mailman/listinfo/openssl-dev

[openssl-dev] [openssl.org #2612] Segfault protection in X509v3 extension API - PATCH

rohibited. > > Any personal views expressed in this e-mail are those of the > individual sender and the company does not endorse or accept > responsibility for them. > > Prior to taking any action based upon this e-mail message, you should > seek appropriate confirmation of its au

[openssl-dev] [openssl.org #2622] Buffer overflow using UI_add_input_string

> because there is a buffer overflow as demonstrated by the enclosed C > program. > > $ make LDLIBS=-lcrypto ui > cc ui.c -lcrypto -o ui > $ ./ui > pin_buf[UI_MAX_SECRET_STRING_LENGTH] = 1 > Enter PIN:ab > > strlen(pin_buf) = 2 > pin_buf = ab > pin_buf[UI_MA

[openssl-dev] [openssl.org #4345] Bug - Cannot build openssl-1.1.0-pre4-dev on NetBSD 6_Stable

o.husr/include/sys/cdefs.h', needed by 'apps/openssl'. > >> Stop. > >> > >> ******* > >> I have problems even if I turn off debug. > >> > >> I really want debug AND I think I need to enable crypto-mdebug and > &g

[openssl-dev] [openssl.org #4356] 64-bit OS X on x86_64 misidentified as i686

work on > > # MacOS. At least, right now on this Mac. > > sleep 5 > > fi > > fi > > if [ "$ISA64" = "1" -a "$KERNEL_BITS" = "64" ]; then > > OUT="darwin64-x86_64-cc" > > else > > OUT="darwin-i386-cc" > > fi ;; > > > > $MACHINE looks like it could help here: > > > > $ uname -m > > x86_64 > > > > Maybe its time to add a case for x86_64. For those who really want > > 32-bit, they can 'export KERNEL_BITS=32'. > > > -- > Richard Levitte > levi...@openssl.org -- Richard Levitte levi...@openssl.org -- Ticket here: http://rt.openssl.org/Ticket/Display.html?id=4356 Please log in as guest with password guest if prompted -- openssl-dev mailing list To unsubscribe: https://mta.openssl.org/mailman/listinfo/openssl-dev

[openssl-dev] [openssl.org #4217] Fixing DJGPP port of openssl master branch.

ged into master. Closing this ticket. Cheers, Richard -- Richard Levitte levi...@openssl.org -- Ticket here: http://rt.openssl.org/Ticket/Display.html?id=4217 Please log in as guest with password guest if prompted -- openssl-dev mailing list To unsubscribe: https://mta.openssl.org/mailman/l

[openssl-dev] [openssl.org #4522] Update to openssl.spec supplied with 1.0.1s

that code before posting the file. > > > > > > I apologize for any confusion. > > > > > > John Withers > > > Enterprise Operations > > > Directory Services Branch - OS:CTO:EO:ISD:DSB:PKI > > > Champaign, Illinois > > >

[openssl-dev] [openssl.org #4522] Update to openssl.spec supplied with 1.0.1s

le. I neglected to > > reinstate that code before posting the file. > > > > I apologize for any confusion. > > > > John Withers > > Enterprise Operations > > Directory Services Branch - OS:CTO:EO:ISD:DSB:PKI > > Champaign, Illinois > > > > Phone:

[openssl-dev] [openssl.org #4522] Update to openssl.spec supplied with 1.0.1s

7736 > > -----Original Message- > From: Richard Levitte via RT [mailto:r...@openssl.org] > Sent: Friday, May 06, 2016 8:13 AM > To: Withers John Z > Cc: openssl-dev@openssl.org > Subject: [openssl.org #4522] Update to openssl.spec supplied with > 1.0.1s > > Vid Thu, 05 Ma

[openssl-dev] [openssl.org #4324] openssl-1.1.0-pre3 with solaris-x86-cc & solaris64-x86_64-cc make fails

Thank you. Closing this ticket. On Wed May 11 15:01:07 2016, yoi_no_myou...@yahoo.co.jp wrote: > Hello, > > They are fixed in openssl-1.1.0-pre5. > > Regards, > > > --- Kiyoshi <yoi_no_myou...@yahoo.co.jp> > > > > > ----- Original Message - >

[openssl-dev] [openssl.org #4452] openssl-1.1.0-pre4: undefined symbol for solaris-x86-cc

Thank you. Closing this ticket. On Wed May 11 14:57:09 2016, yoi_no_myou...@yahoo.co.jp wrote: > Hello, > > It is fixed in openssl-1.1.0-pre5. > > Thanks, > > --- Kiyoshi <yoi_no_myou...@yahoo.co.jp> > > > > > - Original Message - > >

[openssl-dev] [openssl.org #4453] openssl-1.1.0-pre4: make fails with 'wrong ELF class: ELFCLASS64' on solaris64-x86_64-cc

Thank you. Closing this ticket. On Wed May 11 15:15:49 2016, yoi_no_myou...@yahoo.co.jp wrote: > Hi, > > Checked with openssl-1.1.0-pre5, > and confirmed it is fixed. > > Thanks, > > --- Kiyoshi <yoi_no_myou...@yahoo.co.jp> > > > > > ----- Original M

[openssl-dev] Packager material in our source...

)? This is to say, I'm going to make a move to remove openssl.spec from our source, and thought a fair warning was waranted. Cheers, Richard -- Richard Levitte levi...@openssl.org OpenSSL Project http://www.openssl.org/~levitte/ -- openssl-dev mailing list To unsubscribe: https

[openssl-dev] [openssl.org #4444] [openssl-1.1.0-pre4] Make fails with "recipe for target 'depend' failed" on solaris64-x86_64

> > >>-- Original Message -- > >> > >>Fixup show in last message has now been merged with master, commit > >>a6adf099cbd7c3bc5c7051ad3d334636ef5e7f90 > >> > >>-- > >>Richard Levitte > >>levi...@openssl.org > >> >

[openssl-dev] [openssl.org #4423] CentOS 7 x86_64, multiple self test failures

You need to heed this, from README.PERL: - on Linux distributions based on RPMs, you will need to install 'perl-core' rather than just 'perl'. So 'yum install perl-core' should be the answer to this issue. Vid Sun, 13 Mar 2016 kl. 14.09.34, skrev noloa...@gmail.com: > Working form Master at

[openssl-dev] [openssl.org #4356] 64-bit OS X on x86_64 misidentified as i686

" You have about 5 seconds to press Ctrl-C to > abort." > # The stty technique used elsewhere doesn't work on > # MacOS. At least, right now on this Mac. > sleep 5 > fi > fi > if [ "$ISA64" = "1" -a "$KERNEL_BITS" = "64" ]; then

[openssl-dev] [openssl.org #4490] "nmake install" fails "Destination must be a directory at .\util\copy.pl line 39" on Windows with short pathname (no spaces)

> MD5_OBJ_ASM =md5-x86_64.o > SHA1_OBJ_ASM =sha1-x86_64.o sha256-x86_64.o sha512-x86_64.o sha1-mb- > x86_64.o sh > a256-mb-x86_64.o > RMD160_OBJ_ASM= > CMLL_ENC =cmll-x86_64.o cmll_misc.o > MODES_OBJ =ghash-x86_64.o aesni-gcm-x86_64.o > PADLOCK_OBJ =e_padlock-x86_64.o > CHACH

[openssl-dev] [openssl.org #4453] openssl-1.1.0-pre4: make fails with 'wrong ELF class: ELFCLASS64' on solaris64-x86_64-cc

re4' > Makefile:8687: recipe for target 'apps/openssl' failed > make: *** [apps/openssl] Error 2 > > > Patch for this: > diff ../openssl-1.1.0-pre4.orig/Configurations/10-main.conf > Configurations/10-main.conf > 196c196 > < lflags => add(threads("-mt")), > --- > > lflags => add(threads("-mt -m64")), > > > It seems to be better to change '-xarch=generic64' to '-m64' in line > 196 & 201 of the same file, too. > > > Best Regards, > > --- Kiyoshi <yoi_no_myou...@yahoo.co.jp> -- Richard Levitte levi...@openssl.org -- Ticket here: http://rt.openssl.org/Ticket/Display.html?id=4453 Please log in as guest with password guest if prompted -- openssl-dev mailing list To unsubscribe: https://mta.openssl.org/mailman/listinfo/openssl-dev

[openssl-dev] [openssl.org #4452] openssl-1.1.0-pre4: undefined symbol for solaris-x86-cc

erencing errors. No output written to > > apps/openssl > >>> ../Makefile.shared:186: recipe for target 'link_app.' failed > >>> make[1]: *** [link_app.] Error 2 > >>> > >>> > >>> % ../Configure solaris-x86-cc no-asm > >>> > >>>

[openssl-dev] [openssl.org #4415] test/certs/mkcert.sh uses "#! /binbash"

ipts that are for public use (they are generated from a template). The rest are internal, and we adamantly call them with explicit perl commands, like 'perl foo.pl'. In other words, this is a very low priority. Closing this ticket. -- Richard Levitte levi...@openssl.org -- Ticket here: http://

[openssl-dev] [openssl.org #4399] OS X 10.8: Make clean is leaving build artifacts

ylib > ./engines/padlock.dylib > > $ make distclean > make: *** No rule to make target 'distclean'. Stop. > $ make dclean > make: *** No rule to make target 'dclean'. Stop. > This issue was resolved with commit 4c1cf7e4400daa47fd18c6321edb78fac636a994 Closing this ticket. -

[openssl-dev] [openssl.org #4345] Bug - Cannot build openssl-1.1.0-pre4-dev on NetBSD 6_Stable

, but I cannot confirm this on my > builds. I built tor with debug symbols, but so far, even if I set > breakpoints at main() in tor, running tor in gdb appears to crash in > openssl somewhere but I cannot execute a backtrace to see what line in tor > is calling the openssl function that

[openssl-dev] [openssl.org #4324] openssl-1.1.0-pre3 with solaris-x86-cc & solaris64-x86_64-cc make fails

o; \ > SHLIB_SUFFIX=;\ > ! # if [ $(LIBNAME) != "crypto" -a $(LIBNAME) != "ssl" ]; then \ > ALLSYMSFLAGS="$${MINUSZ}allextract"; \ > ! # else \ > ! # $(PERL) $(SRCDIR)/util/mkdef.pl $(LIBNAME) linux > >$(LIBNAME).map; \ > ! # ALLSYMSFLAGS="

[openssl-dev] [openssl.org #4255] OpenSSL-1.1.0-pre2 failures using MinGW-W64

. > > Could you tell, whether this errors reproduced on other Windows > systems? (mean not using cross-compilation or Wine) Ah, I see that it's the tests based on TLSProxy that are troublesome... we have seen this before, and I can't remember if this was resolved. Matt, I think this is

[openssl-dev] [openssl.org #4311] OpenSSL 1.1.0-pre3: quote PERL=$(PERL) in Makefiles

On Tue May 10 14:56:16 2016, rainer.j...@kippdata.de wrote: > Am 10.05.2016 um 15:29 schrieb Richard Levitte via RT: > > On Tue May 10 13:18:22 2016, matt wrote: > >> Makefile.in doesn't exist any more. Ping Richard Levitte - does > >> anything need > >>

[openssl-dev] [openssl.org #4456] Fedora 1, i386: error: field `next_timeout` has incomplete type

On Mon Mar 21 00:11:17 2016, noloa...@gmail.com wrote: > On Sun, Mar 20, 2016 at 2:45 PM, Richard Levitte via RT > <r...@openssl.org> wrote: > > '#include ' should be added in e_os.h rather than > > ssl/ssl_locl.h > > > > Thanks. > > Would it be possible

[openssl-dev] [openssl.org #4418] Apple configuration delay does not respond to Ctrl-C, proceeds with configuration

On Tue May 10 14:29:19 2016, matt wrote: > Ping Richard Levitte. Can this be closed? Yes, it was fixed with commit a87c159f19e998bba660ceba9d01c5fc58bfa60b. Closing now. -- Richard Levitte levi...@openssl.org -- Ticket here: http://rt.openssl.org/Ticket/Display.html?id=4418 Please

[openssl-dev] [openssl.org #4311] OpenSSL 1.1.0-pre3: quote PERL=$(PERL) in Makefiles

On Tue May 10 13:18:22 2016, matt wrote: > Makefile.in doesn't exist any more. Ping Richard Levitte - does > anything need > to be done for the new build system? The run_tests.pl line in Configurations/unix-Makefile.tmpl would still need that change... ... but I don't quite u

[openssl-dev] [openssl.org #4245] OpenSSL-1.1-pre2 e_oss.h and inline conflicts

od definition for > ossl_inline > > If some preceding header file (and I have run across this) does a > #define inline > > The e_os2.h will not change the ossl_inline and the safestack.h and > other header files will prodice pages of errors. -- Richard Levitte levi...@openssl.or

[openssl-dev] [openssl.org #4255] OpenSSL-1.1.0-pre2 failures using MinGW-W64

On Tue May 10 12:36:40 2016, matt wrote: > Re-opening. OP reports there are still issues with "make test" hanging. I would like OP to submit a 'make test' log, preferably verbose: HARNESS_VERBOSE=yes make test -- Richard Levitte levi...@openssl.org -- Ticket here: http://rt.opens

<    1   2   3   4   5   6   7   8   9   10   >