Re: … the actual OpenSSL

[Uli Kusterer]

On 12 Jan 2015, at 02:48, Marco S Hyman  wrote:
>> My question is in two parts:
> 
> See https://github.com/libressl-portable/portable
> 
> "The resulting library and 'openssl' utility is largely API-compatible with
> OpenSSL 1.0.1. However, it is not ABI compatible - you will need to relink 
> your
> programs to LibreSSL in order to use it, just as in moving from OpenSSL 0.9.8
> to 1.0.1."
> 
> No comment regarding part (b) of your question.

 AIUI the missing ABI compatibility in OpenSSL (and its developers' 
non-interest in providing a binary-stable interface) are the reason why Apple 
deprecated OpenSSL and introduced Security.framework. They wanted an encryption 
API on their platform that would automatically get its security holes plugged 
for all apps when the OS updates its copy, which apparently OpenSSL didn’t 
allow.

Cheers,
-- Uli Kusterer
“The Witnesses of TeachText are everywhere...”
http://zathras.de


___

Cocoa-dev mailing list (Cocoa-dev@lists.apple.com)

Please do not post admin requests or moderator comments to the list.
Contact the moderators at cocoa-dev-admins(at)lists.apple.com

Help/Unsubscribe/Update your Subscription:
https://lists.apple.com/mailman/options/cocoa-dev/archive%40mail-archive.com

This email sent to arch...@mail-archive.com

Re: … the actual OpenSSL

[Marco S Hyman]

> My question is in two parts:

See https://github.com/libressl-portable/portable

"The resulting library and 'openssl' utility is largely API-compatible with
OpenSSL 1.0.1. However, it is not ABI compatible - you will need to relink your
programs to LibreSSL in order to use it, just as in moving from OpenSSL 0.9.8
to 1.0.1."

No comment regarding part (b) of your question.
___

Cocoa-dev mailing list (Cocoa-dev@lists.apple.com)

Please do not post admin requests or moderator comments to the list.
Contact the moderators at cocoa-dev-admins(at)lists.apple.com

Help/Unsubscribe/Update your Subscription:
https://lists.apple.com/mailman/options/cocoa-dev/archive%40mail-archive.com

This email sent to arch...@mail-archive.com

… the actual OpenSSL

[Quincey Morris]

On Jan 11, 2015, at 15:07 , Uli Kusterer  wrote:
> 
> Short caveat: Do not get the actual OpenSSL. Get LibreSSL

Jumping to a new thread here, since I’m going OT for the original thread. But I 
have an actual question at the end.

I wondered about this issue just yesterday, looking at the open source AllJoyn 
project. There is an iOS library in the release package, but if you look at the 
installation instructions, the first thing it says is: “go install OpenSSL”.

I'm taking the liberty of mentioning AllJoyn out of the blue, because my 
understanding is that it has now been embraced by Microsoft, along with Android 
and iOS development generally in the upcoming Visual Studio 2015. For those 
reasons, it seems to me it should be on every Mac developer’s radar, even if 
they don’t actually want to use it. Hence this PSA.

My question is in two parts:

(a) Is LibreSSL API-compatible with OpenSSL?

(b) Is it released for Apple platforms as a FERCRISSAKES FRAMEWORK?

[Sorry, was I shouting? It’s one of my pet peeves that open source software — 
sometimes written by some of the finest minds on the planet — thinks it’s done 
with a lowest-common-denominator release package. Why can’t the release package 
contain the per-platform things that most developers actually use, like 
frameworks that are ready to drop into a project? IS A LITTLE BIT OF EFFORT TOO 
MUCH TO ASK??]

[[Sorry, shouting again.]]


___

Cocoa-dev mailing list (Cocoa-dev@lists.apple.com)

Please do not post admin requests or moderator comments to the list.
Contact the moderators at cocoa-dev-admins(at)lists.apple.com

Help/Unsubscribe/Update your Subscription:
https://lists.apple.com/mailman/options/cocoa-dev/archive%40mail-archive.com

This email sent to arch...@mail-archive.com

Re: licence key validation method

[Uli Kusterer]

On 11 Jan 2015, at 21:59, Charles Srstka  wrote:
> IMO, it’s better to just static-link OpenSSL into the app and use that.

 Short caveat: Do not get the actual OpenSSL. Get LibreSSL, which is a fork of 
OpenSSL done by the OpenBSD folks (i.e. people who actually know security) done 
after all the brouhaha with that big bug making OpenSSL insecure.

Cheers,
-- Uli Kusterer
“The Witnesses of TeachText are everywhere...”
http://zathras.de


___

Cocoa-dev mailing list (Cocoa-dev@lists.apple.com)

Please do not post admin requests or moderator comments to the list.
Contact the moderators at cocoa-dev-admins(at)lists.apple.com

Help/Unsubscribe/Update your Subscription:
https://lists.apple.com/mailman/options/cocoa-dev/archive%40mail-archive.com

This email sent to arch...@mail-archive.com

Re: licence key validation method

[Jens Alfke]

> On Jan 11, 2015, at 12:59 PM, Charles Srstka  wrote:
> 
> IMO, it’s better to just static-link OpenSSL into the app and use that.

Kind of big, though! libSodium* (based on NaCl) is a much smaller crypto 
library, which also has the benefit that it uses an elliptic-key algorithm, 
Curve25519, whose keys are a lot smaller than RSA's: 256 bits instead of 2048+.

—Jens

* https://github.com/jedisct1/libsodium
___

Cocoa-dev mailing list (Cocoa-dev@lists.apple.com)

Please do not post admin requests or moderator comments to the list.
Contact the moderators at cocoa-dev-admins(at)lists.apple.com

Help/Unsubscribe/Update your Subscription:
https://lists.apple.com/mailman/options/cocoa-dev/archive%40mail-archive.com

This email sent to arch...@mail-archive.com

Re: licence key validation method

[Charles Srstka]

On Jan 11, 2015, at 2:05 PM, Jens Alfke  wrote:
> 
>> On Jan 10, 2015, at 10:34 PM, 2551 <2551p...@gmail.com 
>> > wrote:
>> 
>> Yes, that's precisely what I'm looking for and don't seem able to find. Can 
>> anyone suggest one? I've been all over stackexchange etc, and there seems to 
>> be a lot of confusion out there (or, rather, the more I read, the more 
>> confused I'm getting).
> 
> I feel your pain. The crypto APIs are IMHO the worst designed APIs in OS X / 
> iOS. (They're not even compatible between the two OSs; each one has annoying 
> incomplete areas.)
> 
> Apple has code samples called CryptoCompatibility and CryptoSample (the 
> latter one doesn't seem to be in Xcode anymore but you can find it online) 
> that show how to perform some basic tasks with the APIs, including signatures.

IMO, it’s better to just static-link OpenSSL into the app and use that. Not 
only is there more documentation out there, but as OpenSSL is a cross-platform 
library. After all, you’re going to want some sort of automatic system for 
generating license codes for your users, and if you write your registration 
code in something cross-platform like plain C with OpenSSL, you can use the 
same code in the generator tool that goes on your website, without requiring 
the website to be hosted on OS X, which gives you a lot more flexibility in 
your web hosting. (Yes, it’s true that typically the code on your site and the 
code in your app will be doing different things — one encoding and the other 
decoding — but I prefer to have the generator immediately run the generated 
code through the validation system in order to be absolutely positive that the 
generated code is going to work in the app, and to send me an e-mail alert if 
any situation comes up where this is not the case.)

Charles
___

Cocoa-dev mailing list (Cocoa-dev@lists.apple.com)

Please do not post admin requests or moderator comments to the list.
Contact the moderators at cocoa-dev-admins(at)lists.apple.com

Help/Unsubscribe/Update your Subscription:
https://lists.apple.com/mailman/options/cocoa-dev/archive%40mail-archive.com

This email sent to arch...@mail-archive.com

Re: licence key validation method

[Jens Alfke]

> On Jan 10, 2015, at 10:34 PM, 2551 <2551p...@gmail.com> wrote:
> 
> Yes, that's precisely what I'm looking for and don't seem able to find. Can 
> anyone suggest one? I've been all over stackexchange etc, and there seems to 
> be a lot of confusion out there (or, rather, the more I read, the more 
> confused I'm getting).

I feel your pain. The crypto APIs are IMHO the worst designed APIs in OS X / 
iOS. (They're not even compatible between the two OSs; each one has annoying 
incomplete areas.)

Apple has code samples called CryptoCompatibility and CryptoSample (the latter 
one doesn't seem to be in Xcode anymore but you can find it online) that show 
how to perform some basic tasks with the APIs, including signatures.

—Jens
___

Cocoa-dev mailing list (Cocoa-dev@lists.apple.com)

Please do not post admin requests or moderator comments to the list.
Contact the moderators at cocoa-dev-admins(at)lists.apple.com

Help/Unsubscribe/Update your Subscription:
https://lists.apple.com/mailman/options/cocoa-dev/archive%40mail-archive.com

This email sent to arch...@mail-archive.com

Re: Mouse tracking under a transparent view still working

[Navneet Kumar]

Hi,
Implemented tracking area in the transparent view, still the under view's 
button shows hovering.

It seems complicated after reading:
http://www.cocoabuilder.com/archive/cocoa/19-the-nstrackingarea-report.html 


Still not able to understand as to fix this problem.

Wishes,
Navneet

> On 11-Jan-2015, at 3:53 pm, Markus Spoettl  wrote:
> 
> On 11/01/15 07:12, Navneet Kumar wrote:
>> So the mouse click etc are not passing through, but the hover button under it
>> still shows hovering effect by drawing the border.
> 
> You probably need to establish a tracking area on the view that is supposed to
> absorb the mouse events. The reason is that -mouseMoved: events will not
> automatically be called just by implementing the event method (unlike the 
> other mouse methods), you need a tracking area for that to work.
> 
> Regards
> Markus
> -- 
> __
> Markus Spoettl
> ___
> 
> Cocoa-dev mailing list (Cocoa-dev@lists.apple.com)
> 
> Please do not post admin requests or moderator comments to the list.
> Contact the moderators at cocoa-dev-admins(at)lists.apple.com
> 
> Help/Unsubscribe/Update your Subscription:
> https://lists.apple.com/mailman/options/cocoa-dev/navneet_6%40me.com
> 
> This email sent to navnee...@me.com

___

Cocoa-dev mailing list (Cocoa-dev@lists.apple.com)

Please do not post admin requests or moderator comments to the list.
Contact the moderators at cocoa-dev-admins(at)lists.apple.com

Help/Unsubscribe/Update your Subscription:
https://lists.apple.com/mailman/options/cocoa-dev/archive%40mail-archive.com

This email sent to arch...@mail-archive.com

Re: Mouse tracking under a transparent view still working

[Markus Spoettl]

On 11/01/15 07:12, Navneet Kumar wrote:

So the mouse click etc are not passing through, but the hover button under it
still shows hovering effect by drawing the border.


You probably need to establish a tracking area on the view that is supposed to
absorb the mouse events. The reason is that -mouseMoved: events will not
automatically be called just by implementing the event method (unlike the other 
mouse methods), you need a tracking area for that to work.


Regards
Markus
--
__
Markus Spoettl
___

Cocoa-dev mailing list (Cocoa-dev@lists.apple.com)

Please do not post admin requests or moderator comments to the list.
Contact the moderators at cocoa-dev-admins(at)lists.apple.com

Help/Unsubscribe/Update your Subscription:
https://lists.apple.com/mailman/options/cocoa-dev/archive%40mail-archive.com

This email sent to arch...@mail-archive.com