[openssl.org #549] Enhancemant Request
Could you add the setting of a credential cache through kssl_ctx_setstring as it is possible for KSSL_KEYTAB and use the value in kssl_tgt_is_available and kssl_cget_tkt by changing it as indicated below: if ((krb5rc = krb5_cc_default(krb5context, krb5ccdef)) != 0) goto err; to if (kssl_ctx-cred_cache) { if ((krb5rc = krb5_cc_resolve(krb5context, kssl_ctx-cred_cache, krb5ccdef)) != 0) goto err; } else { if ((krb5rc = krb5_cc_default(krb5context, krb5ccdef)) != 0) goto err; } Thank you Markus __ OpenSSL Project http://www.openssl.org Development Mailing List [EMAIL PROTECTED] Automated List Manager [EMAIL PROTECTED]
Re: [openssl.org #528]
In message [EMAIL PROTECTED] on Tue, 25 Mar 2003 14:46:04 +0100 (MET), [EMAIL PROTECTED] via RT [EMAIL PROTECTED] said: rt All the tests run fine until the final apps/openssl version -a rt rt rt make[1]: Leaving directory rt `/usr/local/src/openssl/openssl-0.9.7-stable-SNAP-2003032 3/test' rt ld.so.1: apps/openssl: fatal: libgcc_s.so.1: open failed: No such rt file or directory rt Killed rt make: *** [tests] Error 137 Yup, I apparently forgot a few dollar signs. Just committed a fix. Please try tomorrows snapshot. Hi Richard, openssl-0.9.7-stable-SNAP-20030326 produced no errors ta iain -- Richard Levitte \ Spannvgen 38, II \ [EMAIL PROTECTED] [EMAIL PROTECTED] \ S-168 35 BROMMA \ T: +46-8-26 52 47 \ SWEDEN \ or +46-708-26 53 44 Procurator Odiosus Ex Infernis-- [EMAIL PROTECTED] Member of the OpenSSL development team: http://www.openssl.org/ Unsolicited commercial email is subject to an archival fee of $400. See http://www.stacken.kth.se/~levitte/mail/ for more info. -- -- Iain Morrison MRC Cognition and Brain Sciences Unit 15 Chaucer Road Tel 01223 355294 xt 581 CambridgeFax 01223 359062 CB2 2EF email [EMAIL PROTECTED] -- __ OpenSSL Project http://www.openssl.org Development Mailing List [EMAIL PROTECTED] Automated List Manager [EMAIL PROTECTED]
[openssl.org #548] VMS build in 0.9.6x doesn't define THREADS
I added a rather quick fix. Will be tested thoroughyl tonight. This ticket is now resolved. [levitte - Wed Mar 26 23:56:49 2003]: Very simple error, and is already fixed in 0.9.7 and on. Needs to be fixed before any further release of the 0.9.6 branch. -- Richard Levitte [EMAIL PROTECTED] __ OpenSSL Project http://www.openssl.org Development Mailing List [EMAIL PROTECTED] Automated List Manager [EMAIL PROTECTED]
[openssl.org #528]
And that resolves this ticket. Thansk for the help! [EMAIL PROTECTED] - Thu Mar 27 12:33:14 2003]: [...] openssl-0.9.7-stable-SNAP-20030326 produced no errors -- Richard Levitte [EMAIL PROTECTED] __ OpenSSL Project http://www.openssl.org Development Mailing List [EMAIL PROTECTED] Automated List Manager [EMAIL PROTECTED]
Re: [openssl.org #550] bug report - library and header version mismatch
This is not a bug. You must recompile SSH if you want the header version within the executable to change. [EMAIL PROTECTED] via RT wrote: Hi Folks I have noticed that the internal version number of of opensslv.h (0x0090701fL) and the internal version number of libcrypto.so.0.9.7 and libssl.so.0.9.7 (0x0090700fL) do not match for openssl-0.9.7a. They also do not match in openssl-0.9.7-stable-SNAP-20030326. This version mismatch is causing configuration of openssh-3.5p1 to fail with the following error message: checking OpenSSL header version... 90701f (OpenSSL 0.9.7a Feb 19 2003) checking OpenSSL library version... 90700f (OpenSSL 0.9.7 31 Dec 2002) checking whether OpenSSL's headers match the library... configure: error: Your OpenSSL headers do not match your library Here is the self-test report: OpenSSL self-test report: OpenSSL version: 0.9.7a Last change: In ssl3_get_record (ssl/s3_pkt.c), minimize information... Options: --openssldir=/usr/local/OpenSSL threads shared no-krb5 OS (uname): Linux dgrunt 2.4.20 #1 Wed Mar 19 13:10:00 EST 2003 i586 unknown OS (config): i586-whatever-linux2 Target (default): linux-k6 Target: linux-k6 Compiler: gcc version 2.95.3 20010315 (release) Test passed. Test report in file testlog What can I do to fix this? Thanks -- Ken -- [EMAIL PROTECTED] __ OpenSSL Project http://www.openssl.org Development Mailing List [EMAIL PROTECTED] Automated List Manager [EMAIL PROTECTED] smime.p7s Description: S/MIME Cryptographic Signature
Re: [openssl.org #550] bug report - library and header versionmismatch
In message [EMAIL PROTECTED] on Thu, 27 Mar 2003 15:09:47 +0100 (MET), [EMAIL PROTECTED] via RT [EMAIL PROTECTED] said: rt I have noticed that the internal version number of of opensslv.h rt (0x0090701fL) and the internal version number of rt libcrypto.so.0.9.7 and libssl.so.0.9.7 (0x0090700fL) rt do not match for openssl-0.9.7a. You're confused. 0x0090701fL does match 0.9.7a. However, you're right about the libraries. rt They also do not match in openssl-0.9.7-stable-SNAP-20030326. That one has 0x00907020L, which matches 0.9.7b, which is what is being developped in that branch. rt This version mismatch is causing configuration of openssh-3.5p1 to rt fail with the following error message: rt rt checking OpenSSL header version... 90701f (OpenSSL 0.9.7a Feb 19 2003) rt checking OpenSSL library version... 90700f (OpenSSL 0.9.7 31 Dec 2002) rt checking whether OpenSSL's headers match the library... configure: error: rt Your OpenSSL headers do not match your library rt rt Here is the self-test report: rt rt rt OpenSSL self-test report: rt rt OpenSSL version: 0.9.7a rt Last change: In ssl3_get_record (ssl/s3_pkt.c), minimize rt information... rt Options: --openssldir=/usr/local/OpenSSL threads shared no-krb5 rt OS (uname): Linux dgrunt 2.4.20 #1 Wed Mar 19 13:10:00 EST 2003 i586 rt unknown rt OS (config): i586-whatever-linux2 rt Target (default): linux-k6 rt Target: linux-k6 rt Compiler: gcc version 2.95.3 20010315 (release) rt rt Test passed. rt rt Test report in file testlog rt rt What can I do to fix this? Check config.log from OpenSSH. It may be that it takes opensslv.h and libcrypto fom different places, and therefore get an incompatible (according to OpenSSH definitions) combination. -- Richard Levitte \ Spannvägen 38, II \ [EMAIL PROTECTED] [EMAIL PROTECTED] \ S-168 35 BROMMA \ T: +46-8-26 52 47 \ SWEDEN \ or +46-708-26 53 44 Procurator Odiosus Ex Infernis-- [EMAIL PROTECTED] Member of the OpenSSL development team: http://www.openssl.org/ Unsolicited commercial email is subject to an archival fee of $400. See http://www.stacken.kth.se/~levitte/mail/ for more info. __ OpenSSL Project http://www.openssl.org Development Mailing List [EMAIL PROTECTED] Automated List Manager [EMAIL PROTECTED]
[openssl.org #551] [Fwd: Bug#186487: openssl: 'openssl ca' allows serial 00 which breaks the signed certificate]
__ OpenSSL Project http://www.openssl.org Development Mailing List [EMAIL PROTECTED] Automated List Manager [EMAIL PROTECTED]
Bug#186487: Info received (was [openssl.org #551] AutoReply: [Fwd: Bug#186487: openssl: 'openssl ca' allows serial 00 which breaks the signed certificate] )
Thank you for the additional information you have supplied regarding this problem report. It has been forwarded to the developer(s) and to the developers mailing list to accompany the original report. Your message has been sent to the package maintainer(s): Christoph Martin [EMAIL PROTECTED] If you wish to continue to submit further information on your problem, please send it to [EMAIL PROTECTED], as before. Please do not reply to the address at the top of this message, unless you wish to report a problem with the Bug-tracking system. Debian bug tracking system administrator (administrator, Debian Bugs database) __ OpenSSL Project http://www.openssl.org Development Mailing List [EMAIL PROTECTED] Automated List Manager [EMAIL PROTECTED]
[openssl.org #551] [Fwd: Bug#186487: openssl: 'openssl ca' allows serial 00 which breaks the signed certificate]
I've included [EMAIL PROTECTED] as additional requestor. I hope noone minds. Can you tell me exactly what is wrong with the certificate in question? not functional doesn't say very much. If you want to send me the certificate (NOT the key) in question, please do, that would help a lot. I just tested with serial number 00, using the latest Debian kit, and as far as I can see, the certificate looks like it should Something to note, however, is that the CA certificate usually has serial number 0, at least when creating it with OpenSSL the way it's usually described. Therefore, there may be problems verifying, since the serial number 0 will be in two cerificates, and certificates are sometimes accessed as issuer+serial (to get the exact certificate) instead of subject. In the case where the CA cert and one of the issued certs have the same serial number, issuer+serial will lead to both of them, which in this case is an error. However, that's a user error rather than an OpenSSL one, since CA certs can, technically have any serial number, just as any other certificate... [EMAIL PROTECTED], relayed by [EMAIL PROTECTED] - Thu Mar 27 17:43:22 2003]: when the serial file has the value 00 the signed certificate will not be valid. I was searching 2 days for this problem... When serial is 0 or 000 then openssl ca will report that the serial value is wrong. But he accepts 00, which will produce a not functional certificate. -- Richard Levitte [EMAIL PROTECTED] __ OpenSSL Project http://www.openssl.org Development Mailing List [EMAIL PROTECTED] Automated List Manager [EMAIL PROTECTED]
[openssl.org #552] [Fwd: Bug#186490: libssl0.9.7: EVP_{En,De}cryptFinal() don't free ctx parameter]
__ OpenSSL Project http://www.openssl.org Development Mailing List [EMAIL PROTECTED] Automated List Manager [EMAIL PROTECTED]
Bug#186490: Info received (was [openssl.org #552] AutoReply: [Fwd: Bug#186490: libssl0.9.7: EVP_{En,De}cryptFinal() don't free ctx parameter] )
Thank you for the additional information you have supplied regarding this problem report. It has been forwarded to the developer(s) and to the developers mailing list to accompany the original report. Your message has been sent to the package maintainer(s): Christoph Martin [EMAIL PROTECTED] If you wish to continue to submit further information on your problem, please send it to [EMAIL PROTECTED], as before. Please do not reply to the address at the top of this message, unless you wish to report a problem with the Bug-tracking system. Debian bug tracking system administrator (administrator, Debian Bugs database) __ OpenSSL Project http://www.openssl.org Development Mailing List [EMAIL PROTECTED] Automated List Manager [EMAIL PROTECTED]
Bug#186487: Info received (was [openssl.org #551] [Fwd: Bug#186487: openssl: 'openssl ca' allows serial 00 which breaks the signed certificate] )
Thank you for the additional information you have supplied regarding this problem report. It has been forwarded to the developer(s) and to the developers mailing list to accompany the original report. Your message has been sent to the package maintainer(s): Christoph Martin [EMAIL PROTECTED] If you wish to continue to submit further information on your problem, please send it to [EMAIL PROTECTED], as before. Please do not reply to the address at the top of this message, unless you wish to report a problem with the Bug-tracking system. Debian bug tracking system administrator (administrator, Debian Bugs database) __ OpenSSL Project http://www.openssl.org Development Mailing List [EMAIL PROTECTED] Automated List Manager [EMAIL PROTECTED]
Bug#186487: Info received (was Bug#186487: Info received (was [openssl.org #551] AutoReply: [Fwd: Bug#186487: openssl: 'openssl ca' allows serial 00 which breaks the signed certificate] ))
Thank you for the additional information you have supplied regarding this problem report. It has been forwarded to the developer(s) and to the developers mailing list to accompany the original report. Your message has been sent to the package maintainer(s): Christoph Martin [EMAIL PROTECTED] If you wish to continue to submit further information on your problem, please send it to [EMAIL PROTECTED], as before. Please do not reply to the address at the top of this message, unless you wish to report a problem with the Bug-tracking system. Debian bug tracking system administrator (administrator, Debian Bugs database) __ OpenSSL Project http://www.openssl.org Development Mailing List [EMAIL PROTECTED] Automated List Manager [EMAIL PROTECTED]
Bug#186487: Info received (was [openssl.org #551] Status Changed to: open )
Thank you for the additional information you have supplied regarding this problem report. It has been forwarded to the developer(s) and to the developers mailing list to accompany the original report. Your message has been sent to the package maintainer(s): Christoph Martin [EMAIL PROTECTED] If you wish to continue to submit further information on your problem, please send it to [EMAIL PROTECTED], as before. Please do not reply to the address at the top of this message, unless you wish to report a problem with the Bug-tracking system. Debian bug tracking system administrator (administrator, Debian Bugs database) __ OpenSSL Project http://www.openssl.org Development Mailing List [EMAIL PROTECTED] Automated List Manager [EMAIL PROTECTED]
Bug#186490: Info received (was Bug#186490: Info received (was [openssl.org #552] AutoReply: [Fwd: Bug#186490: libssl0.9.7: EVP_{En,De}cryptFinal() don't free ctx parameter] ))
Thank you for the additional information you have supplied regarding this problem report. It has been forwarded to the developer(s) and to the developers mailing list to accompany the original report. Your message has been sent to the package maintainer(s): Christoph Martin [EMAIL PROTECTED] If you wish to continue to submit further information on your problem, please send it to [EMAIL PROTECTED], as before. Please do not reply to the address at the top of this message, unless you wish to report a problem with the Bug-tracking system. Debian bug tracking system administrator (administrator, Debian Bugs database) __ OpenSSL Project http://www.openssl.org Development Mailing List [EMAIL PROTECTED] Automated List Manager [EMAIL PROTECTED]
Bug#186487: Info received (was Bug#186487: Info received (was [openssl.org #551] [Fwd: Bug#186487: openssl: 'openssl ca' allows serial 00 which breaks the signed certificate] ))
Thank you for the additional information you have supplied regarding this problem report. It has been forwarded to the developer(s) and to the developers mailing list to accompany the original report. Your message has been sent to the package maintainer(s): Christoph Martin [EMAIL PROTECTED] If you wish to continue to submit further information on your problem, please send it to [EMAIL PROTECTED], as before. Please do not reply to the address at the top of this message, unless you wish to report a problem with the Bug-tracking system. Debian bug tracking system administrator (administrator, Debian Bugs database) __ OpenSSL Project http://www.openssl.org Development Mailing List [EMAIL PROTECTED] Automated List Manager [EMAIL PROTECTED]
Bug#186487: Info received (was Bug#186487: Info received (was Bug#186487: Info received (was [openssl.org #551] [Fwd: Bug#186487: openssl: 'openssl ca' allows serial 00 which breaks the signed certificate] )))
Thank you for the additional information you have supplied regarding this problem report. It has been forwarded to the developer(s) and to the developers mailing list to accompany the original report. Your message has been sent to the package maintainer(s): Christoph Martin [EMAIL PROTECTED] If you wish to continue to submit further information on your problem, please send it to [EMAIL PROTECTED], as before. Please do not reply to the address at the top of this message, unless you wish to report a problem with the Bug-tracking system. Debian bug tracking system administrator (administrator, Debian Bugs database) __ OpenSSL Project http://www.openssl.org Development Mailing List [EMAIL PROTECTED] Automated List Manager [EMAIL PROTECTED]
Bug#186487: Info received (was Bug#186487: Info received (was [openssl.org #551] Status Changed to: open ))
Thank you for the additional information you have supplied regarding this problem report. It has been forwarded to the developer(s) and to the developers mailing list to accompany the original report. Your message has been sent to the package maintainer(s): Christoph Martin [EMAIL PROTECTED] If you wish to continue to submit further information on your problem, please send it to [EMAIL PROTECTED], as before. Please do not reply to the address at the top of this message, unless you wish to report a problem with the Bug-tracking system. Debian bug tracking system administrator (administrator, Debian Bugs database) __ OpenSSL Project http://www.openssl.org Development Mailing List [EMAIL PROTECTED] Automated List Manager [EMAIL PROTECTED]
Bug#186487: Info received (was Bug#186487: Info received (was Bug#186487: Info received (was [openssl.org #551] AutoReply: [Fwd: Bug#186487: openssl: 'openssl ca' allows serial 00 which breaks the signed certificate] )))
Thank you for the additional information you have supplied regarding this problem report. It has been forwarded to the developer(s) and to the developers mailing list to accompany the original report. Your message has been sent to the package maintainer(s): Christoph Martin [EMAIL PROTECTED] If you wish to continue to submit further information on your problem, please send it to [EMAIL PROTECTED], as before. Please do not reply to the address at the top of this message, unless you wish to report a problem with the Bug-tracking system. Debian bug tracking system administrator (administrator, Debian Bugs database) __ OpenSSL Project http://www.openssl.org Development Mailing List [EMAIL PROTECTED] Automated List Manager [EMAIL PROTECTED]
Bug#186490: Info received (was Bug#186490: Info received (was Bug#186490: Info received (was [openssl.org #552] AutoReply: [Fwd: Bug#186490: libssl0.9.7: EVP_{En,De}cryptFinal() don't free ctx parameter] )))
Thank you for the additional information you have supplied regarding this problem report. It has been forwarded to the developer(s) and to the developers mailing list to accompany the original report. Your message has been sent to the package maintainer(s): Christoph Martin [EMAIL PROTECTED] If you wish to continue to submit further information on your problem, please send it to [EMAIL PROTECTED], as before. Please do not reply to the address at the top of this message, unless you wish to report a problem with the Bug-tracking system. Debian bug tracking system administrator (administrator, Debian Bugs database) __ OpenSSL Project http://www.openssl.org Development Mailing List [EMAIL PROTECTED] Automated List Manager [EMAIL PROTECTED]
Bug#186487: Info received (was Bug#186487: Info received (was Bug#186487: Info received (was Bug#186487: Info received (was [openssl.org #551] [Fwd: Bug#186487: openssl: 'openssl ca' allows serial 00 which breaks the signed certificate] ))))
Thank you for the additional information you have supplied regarding this problem report. It has been forwarded to the developer(s) and to the developers mailing list to accompany the original report. Your message has been sent to the package maintainer(s): Christoph Martin [EMAIL PROTECTED] If you wish to continue to submit further information on your problem, please send it to [EMAIL PROTECTED], as before. Please do not reply to the address at the top of this message, unless you wish to report a problem with the Bug-tracking system. Debian bug tracking system administrator (administrator, Debian Bugs database) __ OpenSSL Project http://www.openssl.org Development Mailing List [EMAIL PROTECTED] Automated List Manager [EMAIL PROTECTED]
Bug#186487: Info received (was Bug#186487: Info received (was Bug#186487: Info received (was Bug#186487: Info received (was Bug#186487: Info received (was [openssl.org #551] [Fwd: Bug#186487: openssl: 'openssl ca' allows serial 00 which breaks the signed certificate] )))))
Thank you for the additional information you have supplied regarding this problem report. It has been forwarded to the developer(s) and to the developers mailing list to accompany the original report. Your message has been sent to the package maintainer(s): Christoph Martin [EMAIL PROTECTED] If you wish to continue to submit further information on your problem, please send it to [EMAIL PROTECTED], as before. Please do not reply to the address at the top of this message, unless you wish to report a problem with the Bug-tracking system. Debian bug tracking system administrator (administrator, Debian Bugs database) __ OpenSSL Project http://www.openssl.org Development Mailing List [EMAIL PROTECTED] Automated List Manager [EMAIL PROTECTED]
Bug#186487: Info received (was Bug#186487: Info received (was Bug#186487: Info received (was [openssl.org #551] Status Changed to: open )))
Thank you for the additional information you have supplied regarding this problem report. It has been forwarded to the developer(s) and to the developers mailing list to accompany the original report. Your message has been sent to the package maintainer(s): Christoph Martin [EMAIL PROTECTED] If you wish to continue to submit further information on your problem, please send it to [EMAIL PROTECTED], as before. Please do not reply to the address at the top of this message, unless you wish to report a problem with the Bug-tracking system. Debian bug tracking system administrator (administrator, Debian Bugs database) __ OpenSSL Project http://www.openssl.org Development Mailing List [EMAIL PROTECTED] Automated List Manager [EMAIL PROTECTED]
Bug#186490: Info received (was Bug#186490: Info received (was Bug#186490: Info received (was Bug#186490: Info received (was [openssl.org #552] AutoReply: [Fwd: Bug#186490: libssl0.9.7: EVP_{En,De}cryptFinal() don't free ctx parameter] ))))
Thank you for the additional information you have supplied regarding this problem report. It has been forwarded to the developer(s) and to the developers mailing list to accompany the original report. Your message has been sent to the package maintainer(s): Christoph Martin [EMAIL PROTECTED] If you wish to continue to submit further information on your problem, please send it to [EMAIL PROTECTED], as before. Please do not reply to the address at the top of this message, unless you wish to report a problem with the Bug-tracking system. Debian bug tracking system administrator (administrator, Debian Bugs database) __ OpenSSL Project http://www.openssl.org Development Mailing List [EMAIL PROTECTED] Automated List Manager [EMAIL PROTECTED]
Bug#186487: Info received (was Bug#186487: Info received (was Bug#186487: Info received (was Bug#186487: Info received (was [openssl.org #551] AutoReply: [Fwd: Bug#186487: openssl: 'openssl ca' allows serial 00 which breaks the signed certificate] ))))
Thank you for the additional information you have supplied regarding this problem report. It has been forwarded to the developer(s) and to the developers mailing list to accompany the original report. Your message has been sent to the package maintainer(s): Christoph Martin [EMAIL PROTECTED] If you wish to continue to submit further information on your problem, please send it to [EMAIL PROTECTED], as before. Please do not reply to the address at the top of this message, unless you wish to report a problem with the Bug-tracking system. Debian bug tracking system administrator (administrator, Debian Bugs database) __ OpenSSL Project http://www.openssl.org Development Mailing List [EMAIL PROTECTED] Automated List Manager [EMAIL PROTECTED]
Bug#186487: Info received (was Bug#186487: Info received (was Bug#186487: Info received (was Bug#186487: Info received (was Bug#186487: Info received (was Bug#186487: Info received (was [openssl.org #551] [Fwd: Bug#186487: openssl: 'openssl ca' allows serial 00 which breaks the signed certificate] ))))))
Thank you for the additional information you have supplied regarding this problem report. It has been forwarded to the developer(s) and to the developers mailing list to accompany the original report. Your message has been sent to the package maintainer(s): Christoph Martin [EMAIL PROTECTED] If you wish to continue to submit further information on your problem, please send it to [EMAIL PROTECTED], as before. Please do not reply to the address at the top of this message, unless you wish to report a problem with the Bug-tracking system. Debian bug tracking system administrator (administrator, Debian Bugs database) __ OpenSSL Project http://www.openssl.org Development Mailing List [EMAIL PROTECTED] Automated List Manager [EMAIL PROTECTED]
Bug#186487: Info received (was Bug#186487: Info received (was Bug#186487: Info received (was Bug#186487: Info received (was [openssl.org #551] Status Changed to: open ))))
Thank you for the additional information you have supplied regarding this problem report. It has been forwarded to the developer(s) and to the developers mailing list to accompany the original report. Your message has been sent to the package maintainer(s): Christoph Martin [EMAIL PROTECTED] If you wish to continue to submit further information on your problem, please send it to [EMAIL PROTECTED], as before. Please do not reply to the address at the top of this message, unless you wish to report a problem with the Bug-tracking system. Debian bug tracking system administrator (administrator, Debian Bugs database) __ OpenSSL Project http://www.openssl.org Development Mailing List [EMAIL PROTECTED] Automated List Manager [EMAIL PROTECTED]
Bug#186490: Info received (was Bug#186490: Info received (was Bug#186490: Info received (was Bug#186490: Info received (was Bug#186490: Info received (was [openssl.org #552] AutoReply: [Fwd: Bug#186490: libssl0.9.7: EVP_{En,De}cryptFinal() don't free ctx parameter] )))))
Thank you for the additional information you have supplied regarding this problem report. It has been forwarded to the developer(s) and to the developers mailing list to accompany the original report. Your message has been sent to the package maintainer(s): Christoph Martin [EMAIL PROTECTED] If you wish to continue to submit further information on your problem, please send it to [EMAIL PROTECTED], as before. Please do not reply to the address at the top of this message, unless you wish to report a problem with the Bug-tracking system. Debian bug tracking system administrator (administrator, Debian Bugs database) __ OpenSSL Project http://www.openssl.org Development Mailing List [EMAIL PROTECTED] Automated List Manager [EMAIL PROTECTED]
[openssl.org #553] Attn: ANTI VIRUS 2003 CLEARANCE SALE!
html head /head body text= Script language=javascript document.write('a href=http://rd.yahoo.com/partner/2766679/overture/first/OV=1/6/1/mcafee/*http://smartprotection.net/index.asp?aid=1oid=1pid=1;/a')/script table border=0 width=600 tr td table border=0 cellpadding=10 cellspacing=0 tr td align=left valign=top style=font-size:14;font-family:;line-height:120% bgColor=#FF p align=left style=font-size:20;font-weight:bold; Norton Antivirus 2003 Internet Security br brSpecial Price Only $29.95 /p br Do you know that someone may be trying to hack your computer now ? brbr Protect yourself for ONLY $29.95 with the Most Trusted Name in Virus-Scan Software. brbr Norton Antivirus 2003 - Full Version - Download it instantly to your system brbr No Need To Wait For An Installation CD! brbr a href=http://rd.yahoo.com/partner/2766679/overture/first/OV=1/6/1/mcafee/*http://smartprotection.net/index.asp?aid=1oid=1pid=1; Click Here to Protect Your Computer/a brbr Order Norton Antivirus 2003 Today, and enjoy 2003 Virus Free! brbr Free Virus Updates for 1 Full Year brbr CLICK HERE, ONLY $29.95: a href=http://rd.yahoo.com/partner/2766679/overture/first/OV=1/6/1/mcafee/*http://smartprotection.net/index.asp?aid=1oid=1pid=1; Click Here to Protect Your Computer/a brbrbrbrbrbr div align=justify style=font-size:10;font-family:arial;font-weight:bold We are strongly against sending unsolicited emails to those who do not wish to receive our special mailings. You have opted in to one or more of our affiliate sites requesting to be notified of any special offers we may run from time to time. We also have attained the services of an independent 3rd party to overlook list management and removal services.brbr This is NOT unsolicited email. If you do not wish to receive further mailings, please a href=http://rd.yahoo.com/partner/2766679/overture/first/OV=1/6/1/mcafee/*http://smartprotection.net/un_sub_scribe.asp;CLICK HERE/a to be removed from the list. Please accept our apologies if you have been sent this email in error. We honor all removal requests. /div /td /tr /table /td /tr /table /body /htmltuz zllbmslgf zla amgf vm et svc qtf __ OpenSSL Project http://www.openssl.org Development Mailing List [EMAIL PROTECTED] Automated List Manager [EMAIL PROTECTED]
Re: Debian Bug Tracker
In message [EMAIL PROTECTED] on Thu, 27 Mar 2003 14:44:58 -0500, Chris Brook [EMAIL PROTECTED] said: cbrook Can you please remove from the forwarding list whatever it is cbrook that is causing a response to the whole list from Debian Bug cbrook Tracker? I am getting flooded ! We know, and it's been handled. -- Richard Levitte \ Spannvägen 38, II \ [EMAIL PROTECTED] [EMAIL PROTECTED] \ S-168 35 BROMMA \ T: +46-8-26 52 47 \ SWEDEN \ or +46-708-26 53 44 Procurator Odiosus Ex Infernis-- [EMAIL PROTECTED] Member of the OpenSSL development team: http://www.openssl.org/ Unsolicited commercial email is subject to an archival fee of $400. See http://www.stacken.kth.se/~levitte/mail/ for more info. __ OpenSSL Project http://www.openssl.org Development Mailing List [EMAIL PROTECTED] Automated List Manager [EMAIL PROTECTED]
Re: [openssl.org #550] bug report - library and header version mismatch
Hi Richard Thanks for the pointers. I have just re-built openssl-0.9.7a from virgin source using the following: ./config --openssldir=/usr/local/OpenSSL threads shared Here is the test report: OpenSSL self-test report: OpenSSL version: 0.9.7a Last change: In ssl3_get_record (ssl/s3_pkt.c), minimize information... Options: --openssldir=/usr/local/OpenSSL threads shared no-krb5 OS (uname): Linux dgrunt 2.4.20 #1 Wed Mar 19 13:10:00 EST 2003 i586 unknown OS (config): i586-whatever-linux2 Target (default): linux-k6 Target: linux-k6 Compiler: gcc version 2.95.3 20010315 (release) Test passed. Using the script at the end of this message, I get the following: Searching for and checking OpenSSL header files. 0x0090701fL ./crypto/opensslv.h 0x0090701fL ./include/openssl/opensslv.h Searching for and checking OpenSSL shared libraries (libcrypto.s*, libssl.s*). 0x0090700fL ./libcrypto.so.0.9.7 0x0090700fL ./libcrypto.so.0 0x0090700fL ./libcrypto.so 0x0090700fL ./libssl.so.0.9.7 0x0090700fL ./libssl.so.0 0x0090700fL ./libssl.so Searching for and checking OpenSSL static library files. 0x0090701fL ./libcrypto.a note that the internal version of opensslv.h (0x0090701fL) does not match the internal version of libcrypto.so.0.9.7 (0x0090700fL) After installing OpenSSL into /usr/local/OpenSSL, the script gives the same results when run against /usr/local/OpenSSH. The above mis-match is what OpenSSH is complaining aboutin the following configure error. checking OpenSSL header version... 90701f (OpenSSL 0.9.7a Feb 19 2003) checking OpenSSL library version... 90700f (OpenSSL 0.9.7 31 Dec 2002) checking whether OpenSSL's headers match the library... configure: error: Your OpenSSL headers do not match your library The OpenSSH config.log contains the following, indicating that config is picking up the OOpenSSL stuff correctly from /usr/local/OpenSSL/... configure:8543: checking OpenSSL header version configure:8574: gcc -o conftest -g -O2 -Wall -Wpointer-arith -Wno-uninitialized -I/usr/local/OpenSSL/include -L/usr/local/OpenSSL/lib conftest.c -lutil -l z -lnsl -lcrypto 5 configure:8460: gcc -o conftest -g -O2 -Wall -Wpointer-arith -Wno-uninitialized -I/usr/local/OpenSSL/include -L/usr/local/OpenSSL/lib conftest.c -lutil -l z -lnsl -lcrypto 5 configure:8463: $? = 0 configure:8466: test -s conftest configure:8469: $? = 0 configure:8543: checking OpenSSL header version configure:8574: gcc -o conftest -g -O2 -Wall -Wpointer-arith -Wno-uninitialized -I/usr/local/OpenSSL/include -L/usr/local/OpenSSL/lib conftest.c -lutil -l z -lnsl -lcrypto 5 In file included from /usr/include/string.h:360, from configure:8553: /usr/include/bits/string2.h: In function `__strcpy_small': /usr/include/bits/string2.h:428: warning: pointer of type `void *' used in arithmetic /usr/include/bits/string2.h:436: warning: pointer of type `void *' used in arithmetic /usr/include/bits/string2.h:441: warning: pointer of type `void *' used in arithmetic /usr/include/bits/string2.h:446: warning: pointer of type `void *' used in arithmetic /usr/include/bits/string2.h:448: warning: pointer of type `void *' used in arithmetic /usr/include/bits/string2.h:453: warning: pointer of type `void *' used in arithmetic configure: In function `main': configure:8564: warning: unsigned int format, long unsigned int arg (arg 3) configure:8577: $? = 0 configure:8579: ./conftest configure:8582: $? = 0 configure:8586: result: 90701f (OpenSSL 0.9.7a Feb 19 2003) configure:8607: checking OpenSSL library version configure:8639: gcc -o conftest -g -O2 -Wall -Wpointer-arith -Wno-uninitialized -I/usr/local/OpenSSL/include -L/usr/local/OpenSSL/lib conftest.c -lutil -l z -lnsl -lcrypto 5 In file included from /usr/include/string.h:360, from configure:8617: /usr/include/bits/string2.h: In function `__strcpy_small': /usr/include/bits/string2.h:428: warning: pointer of type `void *' used in arithmetic /usr/include/bits/string2.h:436: warning: pointer of type `void *' used in arithmetic /usr/include/bits/string2.h:441: warning: pointer of type `void *' used in arithmetic /usr/include/bits/string2.h:446: warning: pointer of type `void *' used in arithmetic /usr/include/bits/string2.h:448: warning: pointer of type `void *' used in arithmetic /usr/include/bits/string2.h:453: warning: pointer of type `void *' used in arithmetic configure: In function `main': configure:8629: warning: unsigned int format, long unsigned int arg (arg 3) configure:8642: $? = 0 configure:8644: ./conftest configure:8647: $? = 0 configure:8651: result: 90700f (OpenSSL 0.9.7 31 Dec 2002) configure:8672: checking whether OpenSSL's headers match the library configure:8689: gcc -o conftest -g -O2 -Wall -Wpointer-arith -Wno-uninitialized -I/usr/local/OpenSSL/include -L/usr/local/OpenSSL/lib conftest.c -lutil -l z -lnsl -lcrypto 5 In file included from /usr/include/string.h:360, from
Re: [openssl.org #553] Attn: ANTI VIRUS 2003 CLEARANCE SALE!
On Thu, Mar 27, 2003 at 08:47:14PM +0100, Christie Barr via RT wrote: [SPAM] Spam-protection measures habe been adjusted. Best regards, Lutz -- Lutz Jaenicke [EMAIL PROTECTED] http://www.aet.TU-Cottbus.DE/personen/jaenicke/ BTU Cottbus, Allgemeine Elektrotechnik Universitaetsplatz 3-4, D-03044 Cottbus __ OpenSSL Project http://www.openssl.org Development Mailing List [EMAIL PROTECTED] Automated List Manager [EMAIL PROTECTED]
[openssl.org #547] SSL_CTX_free messes with external session cache
[EMAIL PROTECTED] - Wed Mar 26 20:14:51 2003]: I noticed that SSL_CTX_free() takes all the sessions in the given CTX's internal session cache, and also removes them from the external session cache (i.e., calls the delete-session callback). Thanks. I have added a slightly modified warning to the manual pages. Ticket should stay around until a final technical solution is found as the current behavious does not make too much sense :-) Best regards, Lutz __ OpenSSL Project http://www.openssl.org Development Mailing List [EMAIL PROTECTED] Automated List Manager [EMAIL PROTECTED]
[openssl.org #545] Problem while compiling openssl 0.49.4
[EMAIL PROTECTED] - Tue Mar 25 15:30:45 2003]: Hi, i've a problem compiling open ssl o.9.4. See the following output: YA7:ffpbld : /eu/ffp/archive/src/openssl-0.9.4 make making all in crypto... make[1]: Entering directory `/eu/ffp/archive/src/openssl-0.9.4/crypto' ( echo #ifndef MK1MF_BUILD; \ echo /* auto-generated by crypto/Makefile.ssl for crypto/cversion.c */; \ echo #define CFLAGS \cc -O\; \ echo #define PLATFORM \cc\; \ echo #define DATE \`date`\; \ echo #endif ) buildinf.h cc -I. -I../include -O -c -o cryptlib.o cryptlib.c make[1]: execvp: cc: Zugriff verweigert make[1]: *** [cryptlib.o] Error 127 make[1]: Leaving directory `/eu/ffp/archive/src/openssl-0.9.4/crypto' make: *** [all] Error 1 As has been discussed on the mailing list, this problem is caused by the permissions on the build system. There is nothing OpenSSL can do about it. This ticket is therefore closed. Best regards, Lutz __ OpenSSL Project http://www.openssl.org Development Mailing List [EMAIL PROTECTED] Automated List Manager [EMAIL PROTECTED]
[openssl.org #502] TXT_DB error number 2
[EMAIL PROTECTED] - Fri Feb 14 09:17:53 2003]: and aftre the last command I obtain (actually it was the last command to do): Certificate is to be certified until Feb 14 06:46:00 2004 GMT (365 days) Sign the certificate? [y/n]:y failed to update database TXT_DB error number 2 TXT_DB error number 2 is a DB_ERROR_INDEX_CLASH. This occurs, if the same serial number shall be used twice. Did you solve your problem in the meantime? Best regards, Lutz __ OpenSSL Project http://www.openssl.org Development Mailing List [EMAIL PROTECTED] Automated List Manager [EMAIL PROTECTED]
[openssl.org #508] Out of memory for assertion propagation
[EMAIL PROTECTED] - Sat Feb 15 13:43:01 2003]: testlog maketest.log make.log Hello- I am having an error trying to load SSL on a HPUX10.20 system. Any help would be appreciated. Hmm. I use OpenSSL on HP-UX 10.20 myself. $ configure -t Operating system: 9000/889-hp-hpux10 Configuring for hpux-parisc2-cc /usr/bin/perl ./Configure hpux-parisc2-cc -D_REENTRANT $ configure Hmm. For the record: my target is hpux-parisc-cc. $ make ... cc -I.. -I../include -DOPENSSL_THREADS -D_REENTRANT -DDSO_DL -DOPENSSL_NO_KRB5 -DOPENSSL_NO_ASM -D_REENTRANT +DA2.0 +DS2.0 +O3 +Optrs_strongly_typed +Olibcalls -Ae +ESlit -DB_ENDIAN -DMD32_XARRAY -c ectest.c cc: main(): error 6350: Webs: Out of memory for assertion propagation. (6348) *** Error exit code 1 Stop. *** Error exit code 1 This seems to be a compiler or system problem to me. Normally HP's C compiler is not very memory intensive, except for very high optimization levels. The default data segment size is 64MB which may be to small for some compile jobs. This is a kernel tunable parameter. What is the current status of your problem? Best regards, Lutz __ OpenSSL Project http://www.openssl.org Development Mailing List [EMAIL PROTECTED] Automated List Manager [EMAIL PROTECTED]
[openssl.org #555] RSA blinding MT patch
This patch fixes the multithreading issues I was having when an RSA struct was being used by multiple threads simultaneously with blinding enabled. It adds _r versions of the convert/invert functions to save the unblinding value, and does the update in the convert step. rsa_eay.c uses the RSA_BLINDING lock to make the convert-and-update step atomic. The patch is for 0.9.6i. Tom -- Tom Wu Chief Security Architect Arcot Systems (408) 969-6124 __ OpenSSL Project http://www.openssl.org Development Mailing List [EMAIL PROTECTED] Automated List Manager [EMAIL PROTECTED]