Re: [openssl-dev] [openssl.org #4514] [BUG] PKCS12_key_gen_uni() crashes when used with Blake

Okay, re-open -- openssl-dev mailing list To unsubscribe: https://mta.openssl.org/mailman/listinfo/openssl-dev

Re: [openssl-dev] [openssl.org #4514] [BUG] PKCS12_key_gen_uni() crashes when used with Blake

Okay, re-open -- Ticket here: http://rt.openssl.org/Ticket/Display.html?id=4514 Please log in as guest with password guest if prompted -- openssl-dev mailing list To unsubscribe: https://mta.openssl.org/mailman/listinfo/openssl-dev

[openssl-dev] Possible deficiency verifying with indirect crl

Dear openssl developers, using the older version 1.0.2d we recently stumbled upon a possible deficiency in verifying a cert using an indirect crl. We went through the scoring code and found the CRL_SCORE_AKID flag unset although the crl issuers cert contained a skid. Snippet In the source

Re: [openssl-dev] [openssl.org #4514] [BUG] PKCS12_key_gen_uni() crashes when used with Blake

Hi Rich, > OpenSSL doesn't promise to protect against all such errors :) Really ? I'm a bit surprise that you don't care to allow to divide by zero... Especially when it's not a big work to prevent such a case. It's up to you. > block size of zero is nonsensical Zero is the block size returned

[openssl-dev] Core dump OpenSSL 1.1.0-pre5 during test (likely in 70-test_sslskewith0p.t)

I get a core dump during test execution for 1.1.0-pre5. Test is test/recipes/70-test_sslskewith0p.t, platform is Solaris 10 Sparc. The crash happens in BN_num_bits() (crypto/bn/bn_lib.c:211), because it is called with a NULL argument, which is then dereferenced. The call comes from

[openssl-dev] Camellia asm build failure for 1.1.0pre5 on Solaris (typo in build.info)

The change https://github.com/openssl/openssl/commit/5384d1e4ebd58f31a06b2f5d1f6c4b28f63d72ed introduced a typo in the last line of file crypto/camellia/build.info. Fix is: --- crypto/camellia/build.info 2016-03-16 19:18:09.0 +0100 +++ crypto/camellia/build.info 2016-04-19

[openssl-dev] OpenSSL version 1.1.0 pre release 5 published

-BEGIN PGP SIGNED MESSAGE- Hash: SHA1 OpenSSL version 1.1.0 pre release 5 (beta) === OpenSSL - The Open Source toolkit for SSL/TLS http://www.openssl.org/ OpenSSL 1.1.0 is currently in beta. OpenSSL 1.1.0 pre release 5 has now

[openssl-dev] Broken links in pod file of OpenSSL 1.1.0pre5

Output during "make install": Cannot find "BIO_gets" in podpath: cannot find suitable replacement path, cannot resolve link Cannot find "BIO_callback_ctrl" in podpath: cannot find suitable replacement path, cannot resolve link Cannot find "DSA_SIG_new3)" in podpath: cannot find suitable

Re: [openssl-dev] where is PEM_read_bio_X509_AUX()

Got it after – “cp /usr/lib/ssl/certs/* /opt/openssl-1.0.1e/certs” ☺ From: openssl-dev [mailto:openssl-dev-boun...@openssl.org] On Behalf Of CHOW Anthony Sent: Monday, April 18, 2016 10:44 PM To: openssl-dev@openssl.org Subject: Re: [openssl-dev] where is PEM_read_bio_X509_AUX() Actually, I

[openssl-dev] [openssl.org #4514] [BUG] PKCS12_key_gen_uni() crashes when used with Blake

Ah, a slippery slope. We do not check for NULL pointers, and similarly a block size of zero is nonsensical. I am closing this as it's really a caller error. OpenSSL doesn't promise to to protect against all such errors :) It has more than enough of its own to worry about. -- Ticket here: