Re: cvs commit: openssl/crypto/err err.c

2002-02-15 Thread Ben Laurie
Bodo Moeller wrote: On Thu, Feb 14, 2002 at 02:42:36PM +0100, [EMAIL PROTECTED] wrote: Log: For some reason, getting the topmost error was done the same way as getting the bottommost one. I hope I understood correctly how this should be done. It seems to work when running

Re: cvs commit: openssl/crypto/engine hw_sureware.c

2002-02-15 Thread Ben Laurie
Hmm. You did this with a different name from me (idx instead of index_) - isn't that going to be irritating? [EMAIL PROTECTED] wrote: steve 14-Feb-2002 19:46:16 Modified:crypto/engine Tag: OpenSSL_0_9_7-stable hw_sureware.c Log: Fix warnings: #if out some unused

Re: cvs commit: openssl/crypto/engine hw_sureware.c

2002-02-16 Thread Ben Laurie
Dr S N Henson wrote: Ben Laurie wrote: Hmm. You did this with a different name from me (idx instead of index_) - isn't that going to be irritating? I hadn't realised someone else had come across this. It should be consistent I suppose. Personally I always find variable names

Re: cvs commit: openssl-play/levitte PROBLEMS

2002-03-05 Thread Ben Laurie
[EMAIL PROTECTED] wrote: 4. According to Theo and Beck (both OpenBSD folks), the current /dev/crypto engine doesn't work. It seems to be a adaptation of Theo's cryptodev demo, and should be thrown away. My opinion: I trust Theo and those guys to know what they talk about,

Re: -ciphers bug

2002-03-06 Thread Ben Laurie
Adam Back wrote: It seems that if you enable ADH but disable MEDIUM ciphersuites, they get left on anyway. I guess not too many people enable ADH, but there are scenarios where it is useful, and so this seems like a security bug. What I did: % openssl s_server -state -CApath

Re: MD5 calculation...

2002-03-27 Thread Ben Laurie
Bill Pringlemeir wrote: In crypto/md5/md5_dgst.c, there is lots of code as follows, /* Round 0 */ R0(A,B,C,D,X[ 0], 7,0xd76aa478L); R0(D,A,B,C,X[ 1],12,0xe8c7b756L); R0(C,D,A,B,X[ 2],17,0x242070dbL); R0(B,C,D,A,X[ 3],22,0xc1bdceeeL); ... This

Re: EVP_CipherInit() doesn't check for weak DES keys (0.9.6)

2002-04-02 Thread Ben Laurie
James Yonan wrote: Given that the EVP level is supposed to offer callers a cipher-independent interface, where the caller doesn't necessarily know the idiosyncracies of the underlying cipher, wouldn't it make sense for evp/e_des3.c to call des_set_key_checked() instead of

Re: EVP incompatibility from 0.9.6 to 0.9.7

2002-04-20 Thread Ben Laurie
Lutz Jaenicke wrote: On Fri, Apr 19, 2002 at 05:01:02AM -0600, James Yonan wrote: The following program succeeds on 0.9.6 but fails on 0.9.7. It tests the feature of calling EVP_CipherInit once to build a key schedule, then cycling through calls to EVP_CipherInit, EVP_CipherUpdate,

Re: cvs commit: openssl/crypto/engine tb_ecdsa.c

2002-04-21 Thread Ben Laurie
[EMAIL PROTECTED] wrote: levitte 20-Apr-2002 12:22:43 Modified:crypto/engine tb_ecdsa.c Log: The callback must have (void) as argument list. Notified by Bernd Matthes [EMAIL PROTECTED] Surely only in the prototype - its necessarily void in the actual function if there

Re: openssl dgst ignores read errors

2002-04-23 Thread Ben Laurie
Solar Designer wrote: Hi, This sounds like a bug to me. Noticed it last year and I've just checked that it's still not resolved in the latest snapshot. jill!solar:~/build/openssl-SNAP-20020416$ apps/openssl dgst -md5 /bin/ls MD5(/bin/ls)= d93498d9f52c3dc0330ab930fe3ffc50 OK.

Re: openssl dgst ignores read errors

2002-04-24 Thread Ben Laurie
Solar Designer wrote: On Tue, Apr 23, 2002 at 12:09:14PM +0100, Ben Laurie wrote: Solar Designer wrote: This sounds like a bug to me. Noticed it last year and I've just checked that it's still not resolved in the latest snapshot. jill!solar:~/build/openssl-SNAP-20020416$ apps

Re: DH parameters from http://www.ietf.org/internet-drafts/draft-iet f-ipsec-ike-modp-groups-04.txt return DH_NOT_SUITABLE_GENERATOR

2002-04-27 Thread Ben Laurie
Nils Larsch wrote: On Thursday, 25. April 2002 22:47, you wrote: Hi, I'm tring to use DH params from http://www.ietf.org/internet-drafts/draft-ietf-ipsec-ike-modp-groups-04.txt http://www.ietf.org/internet-drafts/draft-ietf-ipsec-ike-modp-groups-04.tx t , but none get imported

Re: cvs commit: openssl Makefile.org

2002-05-07 Thread Ben Laurie
[EMAIL PROTECTED] wrote: jaenicke07-May-2002 17:35:18 Modified:.Tag: OpenSSL_0_9_7-stable Makefile.org Log: Add missing ; after fi Submitted by: [EMAIL PROTECTED] PR: [openssl.org #18] Revision ChangesPath No revision No

Re: openssl dgst ignores read errors

2002-05-11 Thread Ben Laurie
Solar Designer wrote: On Mon, Apr 29, 2002 at 03:48:48PM +0100, Ben Laurie wrote: Solar Designer wrote: it could also be nice to report the filename and strerror(errno), or it is sometimes not immediately clear what the error messages apply to: jill!solar:~/build/openssl-SNAP

Re: [openssl.org #29] -Wl,-Bsymbolic in 0.9.6d broke shared builds

2002-05-13 Thread Ben Laurie
Lutz Jaenicke via RT wrote: [[EMAIL PROTECTED] - Sun May 12 22:48:56 2002]: JFYI, when updating our package from 0.9.6c to 0.9.6d I've noticed that the new shared libcrypto library doesn't work anymore. The openssl(1) binary wouldn't recognize any of the block ciphers. I tracked

Re: ssl server not running

2002-05-29 Thread Ben Laurie
Deepak Saini wrote: hi! the following code is for the ssl server code it is not running properly and gives memory access error! any ideas...? gdb? Cheers, Ben. -- http://www.apache-ssl.org/ben.html http://www.thebunker.net/ There is no limit to what a man can do or how far he can

getpid()

2002-06-01 Thread Ben Laurie
Long ago, in a galaxy far far away, Solar Designer asked wtf openssl md5 calls getpid() a zillion times. The answer is memory debugging, which checks the thread id on every allocation/free. For reasons I haven't entirely fathomed, unless you are on Windows, what's returned is the PID. Whether

Re: [openssl.org #66] Possible bug in OpenSSL-0.9.6d/crypto/asn1/a_utctm.c

2002-06-01 Thread Ben Laurie
[EMAIL PROTECTED] via RT wrote: I believe that I have found a bug in the above file and would like for someone else to santiy check it. At line 290 in a_utctm.c, a separate code block is being used if the library needs to call gmtime_r() to get the time structure. The value is stored in a

Re: getpid()

2002-06-01 Thread Ben Laurie
Rich Salz wrote: On linux, getpid() is different for different threads. /r$ Well... on FreeBSD (and Solaris) it isn't... Cheers, Ben. -- http://www.apache-ssl.org/ben.html http://www.thebunker.net/ There is no limit to what a man can do or how far he can go if he doesn't mind

Re: [openssl.org #69] Incorrect use of strsep in crypto/evp/evp_test.c

2002-06-03 Thread Ben Laurie
Richard Levitte via RT wrote: Probably because of atoi(), a last-second change was made, changing ustrsep to strsep on that line. Try replacing strsep with ustrsep, that should work better (I know it worked for me). I made the change - I think I mistyped and meant sstrsep - reason being

Re: [openssl.org #69] Incorrect use of strsep in crypto/evp/evp_test.c

2002-06-03 Thread Ben Laurie
Richard Levitte - VMS Whacker wrote: In message [EMAIL PROTECTED] on Mon, 03 Jun 2002 14:38:35 +0100, Ben Laurie [EMAIL PROTECTED] said: ben Richard Levitte via RT wrote: ben Probably because of atoi(), a last-second change was made, changing ben ustrsep to strsep on that line. Try

Re: cvs commit: openssl/crypto/asn1 a_enum.c a_int.c

2002-06-05 Thread Ben Laurie
[EMAIL PROTECTED] wrote: levitte 05-Jun-2002 13:23:23 Modified:crypto/asn1 Tag: OpenSSL_0_9_6-stable a_enum.c a_int.c Log: signedness warning corrected Revision ChangesPath No revision No revision 1.15.2.2 +2 -1

Re: make depend from Configure?

2002-06-09 Thread Ben Laurie
Richard Levitte - VMS Whacker wrote: In revision 1.81 of Configure, the automatic run of 'make depend' was commented out. IIRC, this was done because we had a dependency rebuild war happening a little now and then back then. Since then, we've unified the results of dependency generation

Re: Gladman's Implementation in AES

2002-06-13 Thread Ben Laurie
Satria Bakti (13297096) wrote: Hi, I'm doing some experiment on openssl-0.9.7-stable-SNAP-20020421. I replaced the AES code (the original AES code) with Brian Gladman's AES code (with some modification). (http://fp.gladman.plus.com/cryptography_technology/rijndael/) Then, I measure my

Re: getpid()

2002-06-13 Thread Ben Laurie
Bodo Moeller wrote: On Sat, Jun 01, 2002 at 01:18:35PM +0100, Ben Laurie wrote: Also, the thread id may be used elsewhere - is there any point if its actually the PID? Applications that are actually multi-threaded should (and indeed, on most platforms, must) use CRYPTO_set_id_callback

Re: [openssl.org #85] 0.9.7 prototype constification problems

2002-06-18 Thread Ben Laurie
Bodo Moeller wrote: On Mon, Jun 17, 2002 at 07:02:45PM +0100, Ben Laurie wrote: Avery Pennarun via RT wrote: On Mon, Jun 17, 2002 at 11:19:31AM +0200, Bodo Moeller wrote: Good question, but this problem does not appear to apply to C, and anyway it only makes *existing* code uglier

Re: cvs commit: openssl/crypto/evp evp.h

2002-06-27 Thread Ben Laurie
[EMAIL PROTECTED] wrote: levitte 27-Jun-2002 07:03:04 Modified:crypto/evp evp.h Log: A number of includes were removed from evp.h some time ago. The reason was that they weren't really needed any more for EVP itself. However, it seems like soma applications (I know

Re: GMP-based ENGINE implementation

2002-06-30 Thread Ben Laurie
Geoff Thorpe wrote: Any/all feedback is welcome. Patches too. :-) Interesting. Nice. I say commit it to HEAD. No time for it right now, but when I have it'll be much easier if its in CVS! Cheers, Ben. -- http://www.apache-ssl.org/ben.html http://www.thebunker.net/ There is no limit

Re: SSL_VERIFY_FAIL_IF_NO_PEER_CERT

2002-07-06 Thread Ben Laurie
Tom Wu wrote: When I specify the SSL_VERIFY_FAIL_IF_NO_PEER_CERT flag to SSL_CTX_set_verify, it has the intended effect if I set it on the server side; a client not presenting a cert is rejected. Setting this on the client side does not appear to have the same effect; a server that does

Re: [openssl.org #147] [PATCH] The function print_name in apps/apps.c truncates X509_NAM Es that are longer than 255 characters

2002-07-16 Thread Ben Laurie
[EMAIL PROTECTED] wrote: Thanks for the tip. Now, how do we get this fix into an official codebase? I have a patch queued that fixes this. Cheers, Ben. Yuval -Original Message- From: Harald Koch [mailto:[EMAIL PROTECTED]] Sent: Mon, July 15, 2002 17:33 To: [EMAIL PROTECTED]

Re: [openssl.org #151] S/MIME implemementation doesn't follow MIMEspec. Patch included.

2002-07-18 Thread Ben Laurie
Richard Levitte - VMS Whacker wrote: In message [EMAIL PROTECTED] on Thu, 18 Jul 2002 11:17:41 +0200, Bodo Moeller [EMAIL PROTECTED] said: moeller I think this is wrong. moeller moeller The output file is opened in text mode (not binary), so on systems moeller where line ends are usually

Re: [openssl.org #59] 0.9.7 EVP manual pages incomplete

2002-07-19 Thread Ben Laurie
Geoff Thorpe via RT wrote: G'day, [levitte - Thu Jul 18 20:55:58 2002]: I just did a tentative addition of history. Please check it and complete it if needed. Yup the history stuff looks great, thanks Richard. However I'm not sure who understands the EVP behavioural changes well

OpenSSL Security Altert - Remote Buffer Overflows

2002-07-30 Thread Ben Laurie
The project leading to this advisory is sponsored by the Defense Advanced Research Projects Agency (DARPA) and Air Force Research Laboratory, Air Force Materiel Command, USAF, under agreement number F30602-01-2-0537. The patch and advisory were prepared by Ben Laurie. Advisory 2

Re: [openssl.org #170] OpenSSLDie not exported in Win32

2002-07-30 Thread Ben Laurie
Lutz Jaenicke via RT wrote: On Tue, Jul 30, 2002 at 04:10:45PM +0200, Richard Levitte - VMS Whacker via RT wrote: In message [EMAIL PROTECTED] on Tue, 30 Jul 2002 15:56:30 +0200 (CEST), Richard Levitte - VMS Whacker [EMAIL PROTECTED] said: levitte In message [EMAIL PROTECTED] on Tue, 30 Jul

OpenSSL patches for other versions

2002-07-30 Thread Ben Laurie
Enclosed are patches for today's OpenSSL security alert which apply to other versions. The patch for 0.9.7 is supplied by Ben Laurie [EMAIL PROTECTED] and the remainder by Vincent Danen (email not supplied). Patches are for 0.9.5a, 0.9.6 (use 0.9.6b patch), 0.9.6b, 0.9.6c, 0.9.7-dev

Re: Question about the latest security patch - malicious usage

2002-08-10 Thread Ben Laurie
Jeffrey Altman wrote: The answer to your questions is 'yes'. As I understand it, the patches were released as they are for the time being because it is better to crash your application then allow the attacker to compromise your computer. New patches will have to be released to properly

Re: cvs commit: openssl/demos/engines/rsaref rsaref.c

2002-08-11 Thread Ben Laurie
[EMAIL PROTECTED] wrote: Index: rsaref.c === RCS file: /e/openssl/cvs/openssl/demos/engines/rsaref/rsaref.c,v retrieving revision 1.5 retrieving revision 1.5.2.1 diff -u -r1.5 -r1.5.2.1 --- rsaref.c

Re: cvs commit: openssl/util mkerr.pl

2002-08-11 Thread Ben Laurie
[EMAIL PROTECTED] wrote: bodo02-Aug-2002 13:38:16 Modified:.Tag: OpenSSL-engine-0_9_6-stable CHANGES Configure Makefile.org PROBLEMS STATUS config crypto Tag: OpenSSL-engine-0_9_6-stable cryptlib.h mem.c ssl

Re: OPENSSL slowness

2002-08-12 Thread Ben Laurie
David Schwartz wrote: On Sun, 11 Aug 2002 17:54:49 -0700 (PDT), James Shelby wrote: My first thought was the same. Which brought up another interesting questionthe 32bit Pentium II 333 is still faster than the UltraSparc 400. Frankly, I don't find this surprising. A RISC CPU

Re: Question about the latest security patch - malicious usage

2002-08-13 Thread Ben Laurie
Jeffrey Altman wrote: Jeffrey Altman wrote: The answer to your questions is 'yes'. As I understand it, the patches were released as they are for the time being because it is better to crash your application then allow the attacker to compromise your computer. New patches will have to be

Re: cvs commit: openssl/util mkerr.pl

2002-08-13 Thread Ben Laurie
Bodo Moeller wrote: Ben Laurie [EMAIL PROTECTED]: As noted elsewhere, I really object to returning internal errors! It makes no sense to attempt to continue after the impossible has occurred. If we could be absolutely sure that these events are strictly impossible

Re: cvs commit: openssl/util mkerr.pl

2002-08-14 Thread Ben Laurie
Bodo Moeller wrote: On Wed, Aug 14, 2002 at 01:24:32PM +0300, Arne Ansper wrote: [...] what if some standalone application thinks that the best solution for _its own_ problems is to reboot the machine? (happens all the time under the windows btw, you install some crap and the

Re: cvs commit: openssl/util mkerr.pl

2002-08-14 Thread Ben Laurie
Lutz Jaenicke wrote: On Tue, Aug 13, 2002 at 07:45:30PM +0200, Bodo Moeller wrote: On Tue, Aug 13, 2002 at 05:10:34PM +0100, Ben Laurie wrote: Yes, and the application will continue as if it were sensible to do so. In fact it *is* often sensible to do so because such supposedly impossible

Re: cvs commit: openssl/util mkerr.pl

2002-08-14 Thread Ben Laurie
Bodo Moeller wrote: On Tue, Aug 13, 2002 at 05:10:34PM +0100, Ben Laurie wrote: Bodo Moeller wrote: Ben Laurie [EMAIL PROTECTED]: As noted elsewhere, I really object to returning internal errors! It makes no sense to attempt to continue after the impossible has occurred. If we could

Re: cvs commit: openssl/util mkerr.pl

2002-08-14 Thread Ben Laurie
Bodo Moeller wrote: On Tue, Aug 13, 2002 at 08:09:02PM +0200, Lutz Jaenicke wrote: On Tue, Aug 13, 2002 at 07:45:30PM +0200, Bodo Moeller wrote: On Tue, Aug 13, 2002 at 05:10:34PM +0100, Ben Laurie wrote: Yes, and the application will continue as if it were sensible to do so. In fact

Re: cvs commit: openssl/util mkerr.pl

2002-08-14 Thread Ben Laurie
Arne Ansper wrote: Example: when working through the internal session cache we learn, that the linked list is corrupted, we have dangling pointers and don't know what is going on. This would touch all threads using the same SSL_CTX. Thus: we don't know how to repair it - abort(). to make

Re: cvs commit: openssl/util mkerr.pl

2002-08-14 Thread Ben Laurie
Kenneth R. Robinette wrote: Date sent:Wed, 14 Aug 2002 13:51:43 +0100 From: Ben Laurie [EMAIL PROTECTED] To: Arne Ansper [EMAIL PROTECTED] Copies to:[EMAIL PROTECTED], Bodo Moeller [EMAIL PROTECTED] Subject: Re

Re: cvs commit: openssl/util mkerr.pl

2002-08-14 Thread Ben Laurie
Arne Ansper wrote: On Wed, 14 Aug 2002, Ben Laurie wrote: The point is that the application is now in an inconsistent state and cannot reliably know anything. Even returning from a function could cause an exploit. The only safe thing to do is abort (now I think about it, probably die

Re: cvs commit: openssl/util mkerr.pl

2002-08-14 Thread Ben Laurie
Bodo Moeller wrote: On Wed, Aug 14, 2002 at 03:39:03PM +0100, Ben Laurie wrote: So how did the buffer get to be too small? Well, in one of the cases it was improper protocol data checking (fixed in 0.9.6f). The others should really be impossible, but if they ever become possible

Re: [PATCH] Supply missing prototypes for OpenSSL 0.9.6g

2002-08-19 Thread Ben Laurie
Rainer Orth wrote: With the introduction of public key cryptography into the Network Time Protocol (NTP v4, cf. http://www.ntp.org/), the current version of NTP became a heavy user of OpenSSL. NTP developers strive to keep the sources warning-free with gcc (using -Wall -Wcast-qual

Re: [Fwd: PKCS#11 engines revisited]

2002-08-20 Thread Ben Laurie
Matthias Loepfe wrote: Hi I just want to give you some background information why AdNovum has choosen the let's call it the 'interceptor-way' of implementing the PKCS#11 functionality. We are working in an environment where the main purpose of the hardware security modules (HSM) is not

Re: OpenSSL using a TRNG

2002-08-21 Thread Ben Laurie
Michael Sierchio wrote: Leif Kremkow wrote: I'm looking for some guidance. I'd like to change the OpenSSL library to be able to use a TRNG for all random numbers, not just to seed the PRNG. There are no such devices which produce adequate quantities of random material for a server

Re: Qn on buffer overflow checks in OpenSSL 0.9.6.g

2002-08-25 Thread Ben Laurie
Tushar wrote: Hi, I have a question regarding the buffer overflow checks in 0.9.6g. Why do we always check for SSL2_MAX_RECORD_LENGTH_3_BYTE_HEADER? ^^^ Shouldn't it be for SSL2_MAX_RECORD_LENGTH_2_BYTE_HEADER ^^^ Line# 437 in

Re: Problem calling PKCS12_gen_mac() twice

2002-09-11 Thread Ben Laurie
Stefan Richter wrote: Hi all, i have a problem with the PKCS12_gen_mac() which is called from within PKCS12_verify_mac(). I've a function which extracts the private key from a PKCS#12 file. If I call it once all is fine, but if I call it twice (with the same or another PKCS#12 file) the

Re: [openssl.org #274] session ID length bug (in 0.9.6g and 0.9.7beta3)

2002-09-23 Thread Ben Laurie
Lutz Jaenicke wrote: On Fri, Sep 20, 2002 at 10:34:27AM +0200, Bodo Moeller wrote: On Thu, Sep 19, 2002 at 01:44:01PM +0200, Bodo Moeller via RT wrote: I don't know why that message is empty. What I wrote is that this should now be fixed in the current snapshots (0.9.6-stable and 0.9.8-dev

Re: Why does OpenSSL_add_all_algorithms() exist?

2002-09-23 Thread Ben Laurie
Chris Brook wrote: Those of us who make heavy use of the crypto library, with a limited group of algorithms and without SSL, would certainly not want this pulling in all the algorithms every time we call EVP_PKEY_new. What do you mean by pulling in? They get linked in anyway. And only the

Re: [PATCH] Adding Certicom licensing info

2002-09-25 Thread Ben Laurie
John O Goyo wrote: Greetings: Certicom has intellectual property rights relating to safe primes in DH and point compression in elliptic-curve cryptography. Really? Has that been tested? I ask that the following patches be implemented to inform people of these facts. Why would we want to

Re: Disabling the crypt() macro.

2002-09-26 Thread Ben Laurie
Sam Leffler wrote: 0.9.7 caused massive havoc compiling kerberos 4 (and to some extent 5) when I integrated beta 3 into the freebsd tree. The crypt() macro was a minor annoyance. The bigger problem was the redefinition of the DES key state block (from array to struct). openbsd apparently

Re: FIPS 140-2 certification

2002-09-28 Thread Ben Laurie
Nathan Bardsley wrote: Hello everyone! I work for a company that uses OpenSSH/OpenSSL to remotely support systems we've sold. Since some of our clients are US Dept. of Defense hospitals, our access to these servers needs to comply with a whole range of requirements and standards. At

Re: cvs commit: openssl/crypto/des des_old.h

2002-10-06 Thread Ben Laurie
[EMAIL PROTECTED] wrote: levitte 06-Oct-2002 02:23:34 Modified:crypto/des Tag: OpenSSL_0_9_7-stable des_old.h Log: Do not define crypt(). The supported function is DES_crypt() (an des_crypt() when backward compatibility is desired). Hooray! Cheers, Ben. --

Re: possible bug in BN_dec2bn()

2002-10-14 Thread Ben Laurie
Bodo Moeller wrote: On Mon, Oct 14, 2002 at 12:52:30PM +0200, Richard Levitte - VMS Whacker wrote: The problem seems to be manifested in BN_dec2bn() because of the BN_mul_words and BN_add_words (e.g. line b). Since the upper parts of d aren't cleared out, those routines end up adding to

Re: DES CBC Error in 0.9.7 B4

2002-11-26 Thread Ben Laurie
Chris Brook wrote: Forget my previous email. destest is actually only passing 29 bytes I see, so the predicted ciphertext will of course be wrong if I pass 32 bytes for encryption. So what was the correct test entry in the end? Cheers, Ben. -- http://www.apache-ssl.org/ben.html

Re: Concerns about the use of OPENSSL_cleanse()

2002-12-09 Thread Ben Laurie
Jeffrey Altman wrote: I think we need to take a very close look at the situations when it is safe to replace memset(buf,0,sizeof(buf)) with OPENSSL_cleanse(buf,sizeof(buf)). It is clearly safe to make this replacement when the buffer is a stack allocation because there can be no future use of

Re: [openssl.org #433] 0.9.7 compilation problem with Borland C++5.5

2003-01-14 Thread Ben Laurie
Richard Levitte - VMS Whacker via RT wrote: In message [EMAIL PROTECTED] on Tue, 14 Jan 2003 14:49:31 +0100 (MET), Stephen Henson via RT [EMAIL PROTECTED] said: rt I've analysed this further and the cause seems to be that it bcc 5.5 rt complains about taking the address of a structure that

Re: [openssl.org #359] Calling SSL_read and SSL_write with non-emptyerror stack may cause an error

2003-01-31 Thread Ben Laurie
Bodo Moeller via RT wrote: On Tue, Nov 26, 2002 at 10:44:15PM +0200, Arne Ansper wrote: I just checked. Seems that SSL_CTX_use_certificate_chain_file has a same problem. Other uses of ERR_peek_error seem to be immune to the old entries in error stack. One theory is that applications should

Re: [openssl.org #359] Calling SSL_read and SSL_write with non-emptyerror stack may cause an error

2003-02-01 Thread Ben Laurie
Arne Ansper wrote: I just checked. Seems that SSL_CTX_use_certificate_chain_file has a same problem. Other uses of ERR_peek_error seem to be immune to the old entries in error stack. One theory is that applications should not call arbitrary OpenSSL functions while there is stuff in the error

Re: [CVS] OpenSSL: openssl/crypto/engine/ engine.h openssl/crypto/evp/c_a...

2003-02-03 Thread Ben Laurie
Richard Levitte - VMS Whacker wrote: In message [EMAIL PROTECTED] on Sat, 1 Feb 2003 21:55:30 +0100 (CET), Ben Laurie [EMAIL PROTECTED] said: ben OpenSSL CVS Repository ben http://cvs.openssl.org/ ben ben ben

Re: Guillou-Quisquater signatures

2003-03-08 Thread Ben Laurie
Eric Cronin wrote: The Guillou-Quisquater (GQ) signature scheme seems to be popular in theory literature due to its efficiency compared to other signature algorithms. In the real world however, there does not seem to be much use of GQ... It's not is any of the common cryptographic libraries

Re: Guillou-Quisquater signatures

2003-03-09 Thread Ben Laurie
Eric Cronin wrote: a) How much more efficient is it? I don't know the answer to this one... Lacking any implementations to actually benchmark, all I have are some big-O space and time complexities as compared to RSA/DSA/ECDSA. This is why I was wondering if anyone had experience with it in

[ADVISORY] Timing Attack on OpenSSL

2003-03-17 Thread Ben Laurie
I expect a release to follow shortly. -- http://www.apache-ssl.org/ben.html http://www.thebunker.net/ There is no limit to what a man can do or how far he can go if he doesn't mind who gets the credit. - Robert Woodruff OpenSSL v0.9.7a and 0.9.6i vulnerability

Re: [ADVISORY] Timing Attack on OpenSSL

2003-03-18 Thread Ben Laurie
Corinna Vinschen wrote: Hi, is it recommended to apply the below patch to 0.9.6i as well? We're still releasing both versions, 0.9.6i and 0.9.7a in the Cygwin net distro. Yes. Corinna On Mon, Mar 17, 2003 at 08:47:01AM +, Ben Laurie wrote: I expect a release to follow shortly. -- http

Re: [PATCH] SSE2 inner loop for bn_mul_add_words

2003-06-20 Thread Ben Laurie
dean gaudet wrote: hi there, i tried sending this ages ago but i guess some spam filters probably lost it... i see i have to be subscribed to post stuff. Actually, I've been sitting on it waiting for some free time to take a look :-) Cheers, Ben. -- http://www.apache-ssl.org/ben.html

Re: as/400 port?

2003-06-26 Thread Ben Laurie
Brian C Morris wrote: Hi - We're entertaining the possibility of porting openssl to the AS/400 (iSeries). It seems from searching the archives this effort has been started before - but I assume not finished as I don't see reference to the platform in the code? Is there still an

Re: AES counter mode

2003-06-28 Thread Ben Laurie
Stephen Sprunk wrote: Thus spake Richard Levitte - VMS Whacker [EMAIL PROTECTED] lee_dilkie (the other thing to remember is that CTR can be used with lee_dilkie any block cipher, it's not limited to AES) Absolutely. However, since it's currently very obviously an experimental field, and it

Re: -fPIC flag missing for asm/des_enc-sparc.

2003-08-03 Thread Ben Laurie
Peter Sylvester wrote: Well, sorry for the message below. The result is the destest crashes. So, on solaris, trying the no-asm shared, somehow now I get problems conpiling engines, ok trying no-engine since I don't have any. Why does engines insist to compile the engines with

Re: [CVS] OpenSSL: openssl/crypto/evp/ c_all.c

2003-08-04 Thread Ben Laurie
Richard Levitte wrote: OpenSSL CVS Repository http://cvs.openssl.org/ Server: cvs.openssl.org Name: Richard Levitte Root: /e/openssl/cvs Email: [EMAIL PROTECTED]

FIPS mode

2003-09-04 Thread Ben Laurie
I'm coming close to the end of the work to get OpenSSL FIPS-140ed. So, if people have comments/changes/concerns, they'd better get a move on and clue me in, because once its done we can't change it. Cheers, Ben. -- http://www.apache-ssl.org/ben.html http://www.thebunker.net/ There is no

Re: FIPS mode

2003-09-05 Thread Ben Laurie
Mathias Brossard wrote: On Fri, 2003-09-05 at 11:55, Ben Laurie wrote: - What version of OpenSSL does it correspond to? 0.9.7b? Yes, and the FIPS specific routines will be carried forward in future OpenSSL releases. Only the cryptographic module containing the relevant cryptographic module

Re: FIPS mode

2003-09-05 Thread Ben Laurie
Chris Brook wrote: If I read your reply right, responsibility for DAC and Known Answer Test checking is the responsibility of the app developer, though you will provide the DAC checksum for the crypto module. Have you also included the KATs, since they essentially exist the OpenSSL test

Re: FIPS mode

2003-09-06 Thread Ben Laurie
Chris Brook wrote: Item #2: typically FIPS-140 certified code is delivered as a binary, tested by a lab and checked at both source and binary level, so the opportunity to modify is not there (DAC test will fail). With OpenSSL source that's not the case unless the developer of the product

Re: FIPS mode

2003-09-07 Thread Ben Laurie
Mathias Brossard wrote: On Fri, 2003-09-05 at 19:59, Ben Laurie wrote: Mathias Brossard wrote: - Asymmetric: DSA, RSA, ECDSA Not my understanding. Anyway, DSS only. RSA can't be, and ECDSA we aren't doing. It's a little disappointing that RSA is not part of the process

Re: [CVS] OpenSSL: OpenSSL-fips-0_9_7-stable: openssl/fips/ Makefile.ssl

2003-09-08 Thread Ben Laurie
Richard Levitte wrote: OpenSSL CVS Repository http://cvs.openssl.org/ Server: cvs.openssl.org Name: Richard Levitte Root: /e/openssl/cvs Email: [EMAIL PROTECTED]

Re: A couple more FIPS questions

2003-09-09 Thread Ben Laurie
Verdon Walker wrote: I have downloaded the latest FIPS snapshot (9/9) and I have a couple more questions about it: 1) How do I build it? If I just do a ./config (Linux) and make, it will build everything, but I'm not sure I'm getting all the FIPS stuff. Do I need to specify something like

Re: A couple more FIPS questions

2003-09-10 Thread Ben Laurie
Richard Levitte - VMS Whacker wrote: In message [EMAIL PROTECTED] on Tue, 09 Sep 2003 13:55:43 -0600, Verdon Walker [EMAIL PROTECTED] said: VWalker I have downloaded the latest FIPS snapshot (9/9) and I have a couple VWalker more questions about it: VWalker VWalker 1) How do I build it?

Re: A couple more FIPS questions

2003-09-10 Thread Ben Laurie
Richard Levitte - VMS Whacker wrote: In message [EMAIL PROTECTED] on Wed, 10 Sep 2003 09:45:29 +0100, Ben Laurie [EMAIL PROTECTED] said: ben Richard Levitte - VMS Whacker wrote: ben In message [EMAIL PROTECTED] on Tue, 09 Sep 2003 13:55:43 -0600, Verdon Walker [EMAIL PROTECTED] said

Re: [CVS] OpenSSL: OpenSSL-fips-0_9_7-stable: openssl/fips/dsa/ fips_dsate...

2003-09-10 Thread Ben Laurie
Richard Levitte wrote: OpenSSL CVS Repository http://cvs.openssl.org/ Server: cvs.openssl.org Name: Richard Levitte Root: /e/openssl/cvs Email: [EMAIL PROTECTED]

Re: [CVS] OpenSSL: OpenSSL-fips-0_9_7-stable: openssl/ Configure

2003-09-14 Thread Ben Laurie
Richard Levitte - VMS Whacker wrote: In message [EMAIL PROTECTED] on Sat, 13 Sep 2003 18:57:57 +0200 (CEST), Ben Laurie [EMAIL PROTECTED] said: ben OpenSSL CVS Repository ben http://cvs.openssl.org/ ben

Re: bignum feedback needed

2003-11-02 Thread Ben Laurie
Geoff Thorpe wrote: There is a patch that illustrates how I've been going about the crypto/bn/ audit that can be browsed/downloaded at; http://www.openssl.org/~geoff/bn_debug.diff The comment in the bn.h header changes explains what the basic idea is and of course the macro

Re: PKCS#12 program v 0.53a

1999-01-02 Thread Ben Laurie
Dr Stephen Henson wrote: Hmm lets try this again... What was wrong with the first attempt? Cheers, Ben. -- "My grandfather once told me that there are two kinds of people: those who work and those who take the credit. He told me to try to be in the first group; there was less competition

Re: some bugs

1999-01-04 Thread Ben Laurie
Arne Ansper wrote: hi! i would like to report some bugs in ssleay. unfortunately i don't have diffs against latest openssl source, but the fixes are really small, so i hope it's not too much trouble to incorporate them. 1) crypto/bio/b_printf.c uses static buffer for vsprintf which

Re: some bugs

1999-01-05 Thread Ben Laurie
Arne Ansper wrote: 8) ssl/s2_pkt.c and ssl/s3_pkt.c write_pending and ssl3_write_pending have unnecessary check at the beginning which stops me from moving data around in my buffers between calls to SSL_write. this data is already copied to internal buffers and there is no need for

Re: some bugs

1999-01-16 Thread Ben Laurie
Ulf Möller wrote: I posted a note about an error in the config file regarding Linux 1 and a bug in rand/randfiles.c on Debian Linux a few days ago. Did anybody notice, or should I send mail to some other address ([EMAIL PROTECTED] or so)? I noticed. They're in my list... Cheers, Ben. --

Dependencies

1999-01-17 Thread Ben Laurie
I'm being driven slowly mad by the number of files that have to be in the CVS tree but also get modified by code. Most of them I can deal with, but one I need some feedback on. In general, Makefile.ssl is linked to Makefile (why???), and dependencies tacked on to the end of Makefile.ssl. This

Re: CAST128 fix for

1999-01-17 Thread Ben Laurie
Jun-ichiro itojun Hagino wrote: Hello this is Jun-ichiro (Itoh) Hagino of KAME project. RFC2144 says that, CAST128 must be performed only 12 rounds if key length = 80bits. The following patch should fix the behavior. Assembly language versions needs some fix

Re: Dependencies

1999-01-17 Thread Ben Laurie
Richard Levitte - VMS Whacker wrote: ben I'm being driven slowly mad by the number of files that have to be in ben the CVS tree but also get modified by code. Most of them I can deal ben with, but one I need some feedback on. ben In general, Makefile.ssl is to Makefile (why???), I'm

Re: Negotiating new session params when there are multiple connections on the session?

1999-01-20 Thread Ben Laurie
David Taylor wrote: I have a question about session param negotiation when there are a number of connections attached to the session. If the cipher suite stays the same, I imagine everything works fine as the new session params really only generate connection state (bulk cipher keys, IVs

Re: Problem reports.

1999-01-20 Thread Ben Laurie
[EMAIL PROTECTED] wrote: Gentlefolk, Here's a few problems I've encountered so far with openssl. (1) In bn_lcl.h, definitions of BN_MULL_SIZE_NORMAL, etc. My AIX C compiler is not happy with the double slashes. Are these supposed to be C++ comments? That's what I told my C

Re: Problem reports.

1999-01-20 Thread Ben Laurie
Clifford Heath wrote: Folk, I am responsible for the server that currently distributes the SSLeay mailing lists. I believe that these lists should and will die, and interested parties should move across to openssl lists. Before suggesting this to ssl-users, I'd like to poll the feeling

Re: Documentation

1999-01-20 Thread Ben Laurie
sameer wrote: So, I'm lame, and I haven't been paying too much attention to this list. I realized today, however, that it would be legit for me to work on documentation for OpenSSL. So what's the status on documentation? I'm thinking it would be appropriate to setup another CVS

Re: Legal CYA

1999-01-20 Thread Ben Laurie
sameer wrote: So the other thing which I was reminded to make sure was happening was the required legal CYA that's needed, imo, for an open source project. Namely the bits saying that if you submit something you're granting a license (including right to sublicense), warranting that

  1   2   3   4   5   6   7   >