Re: [openssl-dev] [openssl.org #3863] [PATCH] ECC: Add missing NULL check. Set a flag.

https://github.com/openssl/openssl/pull/575 On Tue, May 26, 2015 at 9:06 PM, Billy Brumley via RT wrote: > Set point->Z_is_one flag after setting point->Z to one. Also check > BIGNUM for NULL before passing it to get_affine_coordinates. > > BBB > > >

Re: [openssl-dev] [openssl.org #3863] [PATCH] ECC: Add missing NULL check. Set a flag.

https://github.com/openssl/openssl/pull/575 On Tue, May 26, 2015 at 9:06 PM, Billy Brumley via RT wrote: > Set point->Z_is_one flag after setting point->Z to one. Also check > BIGNUM for NULL before passing it to get_affine_coordinates. > > BBB > > >

[openssl-dev] [eng_rdrand] alloc and free

ENGINE_load_rdrand() creates a new engine, it adds it/registers it and then frees it. Looking further into these functions, the registration does NOT create a new object and then copy the data into it, so the registration is based on an object that it's later released. Based on this[1]

[openssl-dev] openssl-SNAP-20160121 issues

All right gcc -I.. -I../.. -I../modes -I../include -I../../include -fPIC -DOPENSSL_PIC -DOPENSSL_THREADS -pthread -D_THREAD_SAFE -D_REENTRANT -DDSO_DLFCN -DHAVE_DLFCN_H -DPERL5 -DL_ENDIAN -DTERMIOS -fomit-frame-pointer -O2 -march=i486 -Wall -g -DOPENSSL_EXPERIMENTAL_JPAKE

Re: [openssl-dev] OpenSSL-1.1 make depend

> In case its not clear, the difference in the input to clean-depend.pl is that > when using Solaris cc, /usr/openwin/bin/makedepend is used instead of gcc Yup, got it. Thanks. ___ openssl-dev mailing list To unsubscribe:

Re: [openssl-dev] OpenSSL-1.1 make depend

Try this patch do util/domd ; g diff util/domd diff --git a/util/domd b/util/domd index 16de5c7..f0532ad 100755 --- a/util/domd +++ b/util/domd @@ -26,12 +26,13 @@ if ${MAKEDEPEND} --version 2>&1 | grep "clang" > /dev/null || sed -e '/^# DO NOT DELETE.*/,$d' < Makefile > Makefile.tmp

Re: [openssl-dev] OpenSSL-1.1 make depend

Actually, we can now throw away clean-depend.pl and make a much simpler variant. Its intent was to make sure that the list of dependencies would look the same for everyone, regardless of program used, to avoid commit wars. That isn't necessary any more. Something like this should suffice sed

Re: [openssl-dev] renegotiation failure causes SSL_shutdown to return 1?

Cool! Thanks for doing that :) On Wed, Jan 20, 2016 at 6:04 AM, Matt Caswell wrote: > > > On 05/12/15 09:42, Judson Wilson wrote: > > I am noticing the following sequence of events: > > > > 1) SSL_renegotiate(...), followed by SSL_write(..., 0) fails when a web > > server

[openssl-dev] [openssl.org #4261] BUG unable to connect to Mysql via ssl connection.

I am currently running Ubuntu with Mysql and am unable to connect via an ssl connection to the database getting following error. error 2026 (hy000): ssl connection error: protocol version mismatch My installation details are as follows Ubuntu version Linux ubuntu-365sussex

Re: [openssl-dev] OpenSSL-1.1 make depend

On Thu, Jan 21, 2016, Salz, Rich wrote: > Try this patch do util/domd ... > else > ${MAKEDEPEND} -D OPENSSL_DOING_MAKEDEPEND $@ && \ > -${PERL} $TOP/util/clean-depend.pl < Makefile > Makefile.new > +sed -e 's# /\(\\.\|[^ ]\)*##g' -e '/: *$/d' -e '/^\(#.*\| *\)$/d' \ > +

[openssl-dev] [openssl.org #3863] [PATCH] ECC: Add missing NULL check. Set a flag.

Patch applied. Thanks Matt ___ openssl-dev mailing list To unsubscribe: https://mta.openssl.org/mailman/listinfo/openssl-dev

Re: [openssl-dev] openssl-SNAP-20160121 issues

> On Jan 21, 2016, at 8:56 AM, The Doctor wrote: > > > All right > > gcc -I.. -I../.. -I../modes -I../include -I../../include -fPIC -DOPENSSL_PIC > -DOPENSSL_THREADS -pthread -D_THREAD_SAFE -D_REENTRANT -DDSO_DLFCN > -DHAVE_DLFCN_H -DPERL5 -DL_ENDIAN -DTERMIOS

[openssl-dev] version script patch from Debian

I ran into this problem with the OpenSSL 1.0.1e I built from source on a Debian based system (Ubuntu): libssl.so.1.0.0: no version information available (required by python) Found this page: http://ubuntuforums.org/showthread.php?t=1905963 to work around the issue, but the question is, is the

[openssl-dev] [openssl.org #4261] BUG unable to connect to Mysql via ssl connection.

closing per request of original submitter. -- Rich Salz, OpenSSL dev team; rs...@openssl.org ___ openssl-dev mailing list To unsubscribe: https://mta.openssl.org/mailman/listinfo/openssl-dev

Re: [openssl-dev] version script patch from Debian

On 21/01/16 16:53, Tom Kacvinsky wrote: > I ran into this problem with the OpenSSL 1.0.1e I built from source on a > Debian based system (Ubuntu): > > libssl.so.1.0.0: no version information available (required by python) > > Found this page: > >

Re: [openssl-dev] [openssl.org #4261] AutoReply: BUG unable to connect to Mysql via ssl connection.

Apologies, spotted my own error when reading you notification error path incorrect for ssl_ca certificate file.. Many Thanks Alan -Original Message- From: The default queue via RT [mailto:r...@openssl.org] Sent: 21 January 2016 15:50 To: alan.boc...@outlook.com Subject: [openssl.org

Re: [openssl-dev] OpenSSL-1.1 make depend

Yes the script is wrong. Thanks for trying. Working on a real fix :( ___ openssl-dev mailing list To unsubscribe: https://mta.openssl.org/mailman/listinfo/openssl-dev

Re: [openssl-dev] [openssl.org #4261] BUG unable to connect to Mysql via ssl connection.

On Thu 2016-01-21 10:50:28 -0500, Alan Bocutt via RT wrote: > I am currently running Ubuntu with Mysql and am unable to connect via an ssl > connection to the database getting following error. > > error 2026 (hy000): ssl connection error: protocol version mismatch > > My installation details are

Re: [openssl-dev] [openssl.org #4261] BUG unable to connect to Mysql via ssl connection.

Hi, On 1/21/2016 9:23 AM, Daniel Kahn Gillmor wrote: > On Thu 2016-01-21 10:50:28 -0500, Alan Bocutt via RT wrote: >> I am currently running Ubuntu with Mysql and am unable to connect via an ssl >> connection to the database getting following error. >> >> error 2026 (hy000): ssl connection error:

Re: [openssl-dev] OpenSSL 1.1 SSL_CTX issues

On Thu, Jan 21, 2016 at 05:33:51PM +, Howard Chu wrote: > In OpenLDAP we've been using > CRYPTO_add(>references, 1, CRYPTO_LOCK_SSL_CTX) > to manage our own SSL_CTXs but this is not possible with current 1.1. Making > the structures opaque is a good move, but please provide methods to >

[openssl-dev] OpenSSL 1.1 X509_NAME issues

In OpenLDAP we reference X509_NAME->bytes->data directly, we want the DER bytes which we then pass thru our own DN validator/formatter. This no longer works with OpenSSL 1.1 and I don't see any provided method to return the DER bytes. I don't want a malloc'd copy, I just want read-only access

Re: [openssl-dev] OpenSSL-1.1 make depend

No, same thing happens here too >-- Original Message -- > >Hmm, something is wrong with this new approach (or just on my machine?) >Several targets have been removed from Makefile and hence broke it: > >--- crypto/Makefile- Thu Jan 21 08:48:08 2016 >+++ crypto/MakefileThu Jan 21 08:48:14

[openssl-dev] OpenSSL 1.1 SSL_CTX issues

In OpenLDAP we've been using CRYPTO_add(>references, 1, CRYPTO_LOCK_SSL_CTX) to manage our own SSL_CTXs but this is not possible with current 1.1. Making the structures opaque is a good move, but please provide methods to manipulate refcounts. Currently ssl_lib.c appears to bump the ctx

Re: [openssl-dev] version script patch from Debian

On Thu, Jan 21, 2016 at 12:14 PM, Matt Caswell wrote: > > > > On 21/01/16 16:53, Tom Kacvinsky wrote: > > I ran into this problem with the OpenSSL 1.0.1e I built from source on a > > Debian based system (Ubuntu): > > > > libssl.so.1.0.0: no version information available

[openssl-dev] [openssl.org #3248] Bug - OpenSSL 0.9.8 crashes randomly at the call to BIO_test_flags()

looks like user error; don't pass a NULL pointer. -- Rich Salz, OpenSSL dev team; rs...@openssl.org ___ openssl-dev mailing list To unsubscribe: https://mta.openssl.org/mailman/listinfo/openssl-dev

Re: [openssl-dev] [openssl.org #4261] BUG unable to connect to Mysql via ssl connection.

On Thu 2016-01-21 10:50:28 -0500, Alan Bocutt via RT wrote: > I am currently running Ubuntu with Mysql and am unable to connect via an ssl > connection to the database getting following error. > > error 2026 (hy000): ssl connection error: protocol version mismatch > > My installation details are

Re: [openssl-dev] OpenSSL-1.1 make depend

Hmm, something is wrong with this new approach (or just on my machine?) Several targets have been removed from Makefile and hence broke it: --- crypto/Makefile-Thu Jan 21 08:48:08 2016 +++ crypto/Makefile Thu Jan 21 08:48:14 2016 @@ -1,4 +1,3 @@ -# Generated from Makefile.in, do not edit

Re: [openssl-dev] [eng_rdrand] alloc and free

In message on Thu, 21 Jan 2016 10:57:19 +, Catalin Vasile said: cata.vasile> ENGINE_load_rdrand() creates a new engine, it adds cata.vasile> it/registers it and then frees it. Looking

[openssl-dev] [openssl.org #4262] Fwd: Configure script warns when no configurations changes occur

Hello, When ./config is run, the Configure script always complains about 'make depend’ needing to be run because the $default_depflags and $depflags do not match. Recent changes to Configure automatically create $default_depflags, but takes special exceptions for shared, zip, hw and asm, which

Re: [openssl-dev] [openssl.org #4262] Fwd: Configure script warns when no configurations changes occur

Added pull request: https://github.com/openssl/openssl/pull/578 -- -Todd Short // tsh...@akamai.com // "One if by land, two if by sea, three if by the Internet." On Jan 21, 2016, at 4:11 PM, Short, Todd via RT > wrote: Hello,

[openssl-dev] [openssl.org #4263] store does not compile with opaque data structures

Hello, When experimental-store is enabled in the master branch, the compile fails, due to structures that are now opaque. I have a patch, but am waiting for the RT to be created first. -- -Todd Short // tsh...@akamai.com // "One if by land, two if by sea, three if by

Re: [openssl-dev] [openssl.org #4263] store does not compile with opaque data structures

I added a pull request: https://github.com/openssl/openssl/pull/579 -- -Todd Short // tsh...@akamai.com // "One if by land, two if by sea, three if by the Internet." On Jan 21, 2016, at 4:23 PM, Short, Todd via RT > wrote: