bug report: openssl
operating system: HP-UX11
openssl version 0.9.6b, 0.96g and probably 0.7 too.
configuration options:./Configure hpux64-parisc-cc shared no-idea
Description:
BIO_socket_nbio() fails to set sockets to non-blocking mode.
The call succeeds but the socket is still blocking
I hav
Please test the latest snapshot and answer the questions below. I'm skipping VPATH
discussion for now. I'd like to resolve this ticket soon.
[levitte - Fri Jan 10 16:52:20 2003]:
> > If you just leave out the "-o -type l"
> > you won't make any of the links, and the include/openssl directory
I just test, with OpenSSL 0.9.7a-dev (fresh checkout), the command to
generate a self-signed cerificate according to the example in
x509.pod:
openssl x509 -in cert.pem -addtrust sslclient \
-alias "Steve's Class 1 CA" -out trust.pem
I expected it to fail because it wouldn't find thos
Richard Levitte - VMS Whacker via RT wrote:
> I just test, with OpenSSL 0.9.7a-dev (fresh checkout), the command to
> generate a self-signed cerificate according to the example in
> x509.pod:
>
> openssl x509 -in cert.pem -addtrust sslclient \
> -alias "Steve's Class 1 CA" -out trust.pe
On Tue, Dec 31, 2002 at 01:21:09PM +0100, Marko Asplund via RT wrote:
> 2) error messages during 'make depend' when not using gcc and makedepend
>is installed on the system (HP Ansi C Developer's Bundle, imake
>package). seems like this version of makedepend is not supported. maybe
>
I've analysed this further and the cause seems to be that it bcc 5.5
complains about taking the address of a structure that doesn't have a
complete definition.
For example the following wont compile:
typedef struct FOO_st FOO;
extern FOO bar;
FOO *pbar;
pbar = &bar;
but it has no problems on
In message <[EMAIL PROTECTED]> on Tue, 14 Jan 2003 13:38:22
+0100, Nils Larsch <[EMAIL PROTECTED]> said:
nlarsch> I think it's a typo. From 'man x509' :
[...]
nlarsch> => I guess the example should be:
nlarsch> "openssl x509 -in cert.pem -addtrust clientAuth \
nlarsch>-alias "Steve's
The example was incorrect. I've committed a change.
This ticket is now resolved. Thanks to Nils Larsch for helping me figure this one out.
[[EMAIL PROTECTED] - Tue Jan 14 12:56:55 2003]:
> I just test, with OpenSSL 0.9.7a-dev (fresh checkout), the command to
> generate a self-signed cerificat
In message <[EMAIL PROTECTED]> on Tue, 14 Jan 2003 14:49:31
+0100 (MET), "Stephen Henson via RT" <[EMAIL PROTECTED]> said:
rt> I've analysed this further and the cause seems to be that it bcc 5.5
rt> complains about taking the address of a structure that doesn't have a
rt> complete definition.
rt
In message <[EMAIL PROTECTED]> on Tue, 14 Jan 2003 14:49:31
+0100 (MET), "Stephen Henson via RT" <[EMAIL PROTECTED]> said:
rt> I've analysed this further and the cause seems to be that it bcc 5.5
rt> complains about taking the address of a structure that doesn't have a
rt> complete definition.
r
Actually, most of that was already written (at least in 0.9.7 and on). I got inspired
by your document and wrote something about creating keys. Thanks.
Please look at http://www.openssl.org/docs/HOWTO/ in an hour or so. You should see
the two files certificates.txt and keys.txt. Please read
Hello Richard,
> Richard Levitte via RT wrote:
>
> It's unfortunate that cryptoki.h is GPLd, or I would put it in our
contribution area.
>
> GPL is not compatible with the OpenSSL license. Is it possible to get a
different cryptoki.h?
I got the original cryptoki.h which is not GPLd from RSA an
On Tue, 14 Jan 2003, Lutz Jaenicke via RT wrote:
> On Tue, Dec 31, 2002 at 01:21:09PM +0100, Marko Asplund via RT wrote:
> > 2) error messages during 'make depend' when not using gcc and makedepend
> >is installed on the system (HP Ansi C Developer's Bundle, imake
> >package). seems like
On Tue, 14 Jan 2003, Lutz Jaenicke via RT wrote:
> On Tue, Dec 31, 2002 at 01:21:09PM +0100, Marko Asplund via RT wrote:
> > 2) error messages during 'make depend' when not using gcc and makedepend
> >is installed on the system (HP Ansi C Developer's Bundle, imake
> >package). seems like
I sent this to openssl-dev previously, but I think it got lost in
the noise there (since it didn't go through rt).
In OpenSSL 0.9.6h, there are a couple of BN_init() bugs in
crypto/dsa/dsa_ossl.c. The BN_init() calls in question are in the functions:
dsa_do_sign()(lines 113-114)
dsa_sign_se
[[EMAIL PROTECTED] - Tue Jan 14 15:02:04 2003]:
> In message <[EMAIL PROTECTED]> on Tue, 14 Jan
> 2003 14:49:31 +0100 (MET), "Stephen Henson via RT" <[EMAIL PROTECTED]>
> said:
>
> rt> I've analysed this further and the cause seems to be that it bcc
> 5.5
> rt> complains about taking the address
On Tue, Jan 14, 2003 at 05:12:19PM +0100, Marko Asplund via RT wrote:
> this is what 'what makedepend' said on my system (at the time of the above
> report):
>
> 109] % what /opt/imake/bin/makedepend
> /opt/imake/bin/makedepend:
> X Window System, Version 11 R6+ HP-UX B.11.00.00 +O2
>
Richard Levitte - VMS Whacker via RT wrote:
In message <[EMAIL PROTECTED]> on Tue, 14 Jan 2003 14:49:31 +0100 (MET), "Stephen Henson via RT" <[EMAIL PROTECTED]> said:
rt> I've analysed this further and the cause seems to be that it bcc 5.5
rt> complains about taking the address of a structure tha
Yes that's what I thought. Any ANSI C experts care to comment on whether
that is legal or not?
It's as legal as this:
extern int foo(int);
int (*fp)(int) = &foo;
:)
__
OpenSSL Project http:
> Yes that's what I thought. Any ANSI C experts care to comment on whether
> that is legal or not?
It's as legal as this:
extern int foo(int);
int (*fp)(int) = &foo;
:)
__
OpenSSL Project
Working on code to read/process and create x509 certificates I encountered
the following.
The following code results in an ASN1_TIME structure with internal length
field
of 14 (date1->length =14).
date1 = ASN1_TIME_new();
ASN1_GENERALIZEDTIME_set_string(date1, "20020819093712");
When extrac
Andy Polyakov via RT wrote:
>>+ "sx6", "cc:-g -DTERMIOS::(unknown):::SIXTY_FOUR_BIT DES_INT:::",
>>
>
> No optimization? Not even lousy -O?
-g overrides any optimization you give, and i think there's a problem with
the optimizer anyway because with default optimization, aes-128-cbc test fails.
On Tue, Jan 14, 2003, Paul Koster wrote:
> Working on code to read/process and create x509 certificates I encountered
> the following.
>
> The following code results in an ASN1_TIME structure with internal length
> field
> of 14 (date1->length =14).
>date1 = ASN1_TIME_new();
>ASN1_GENERAL
> > The following code results in an ASN1_TIME structure with internal
length
> > field
> > of 14 (date1->length =14).
> >date1 = ASN1_TIME_new();
> >ASN1_GENERALIZEDTIME_set_string(date1, "20020819093712");
> >
> > When extracting time out an existing certificate however with this
date/tim
On Tue, Jan 14, 2003, Paul Koster wrote:
> > > The following code results in an ASN1_TIME structure with internal
> length
> > > field
> > > of 14 (date1->length =14).
> > >date1 = ASN1_TIME_new();
> > >ASN1_GENERALIZEDTIME_set_string(date1, "20020819093712");
> > >
> > > When extracting t
On Tue, Jan 14, 2003, Richard Levitte - VMS Whacker via RT wrote:
>
> I just test, with OpenSSL 0.9.7a-dev (fresh checkout), the command to
> generate a self-signed cerificate according to the example in
> x509.pod:
>
> openssl x509 -in cert.pem -addtrust sslclient \
> -alias "Steve
OK, since the consensus seems to be a compiler bug and a workaround has
been checked in I'll resolve this ticket.
__
OpenSSL Project http://www.openssl.org
Development Mailing List
That would certainly seem like a good first step.
Have you traced into it at all? I.e. have you run with debug setup and
seen a stack trace s.t. you know the function that is crashing and what
variable is bad (a null pointer or something)? IF so, I may be able to
provide the work around cod
28 matches
Mail list logo
