Delivery reports about your email
This is a collection of reports about email delivery process concerning a message you originated: smtp ipebio15.ise.pw.edu.pl [EMAIL PROTECTED] 1284: ...\ expired after 3 days, problem was: smtp; 500 (connect to ipebio15.ise.pw.edu.pl [194.29.161.106|25|194.29.160.2|47458]: Connection timed out) Following is a copy of MESSAGE/DELIVERY-STATUS format section below. It is copied here in case your email client is unable to show it to you. The information here below is in Internet Standard format designed to assist automatic, and accurate presentation and usage of said information. In case you need human assistance from the Postmaster(s) of the system which sent you this report, please include this information in your question! Virtually Yours, Automatic Email delivery Software Reporting-MTA: dns; elektron.elka.pw.edu.pl Arrival-Date: Thu, 19 Jul 2001 22:50:01 +0200 Original-Recipient: rfc822;[EMAIL PROTECTED] Final-Recipient: RFC822;[EMAIL PROTECTED] Action: failed Status: 5.4.1 (TCP/IP-connection failure) Diagnostic-Code: smtp; 500 (connect to ipebio15.ise.pw.edu.pl [194.29.161.106|25|194.29.160.2|47458]: Connection timed out) Remote-MTA: dns; ipebio15.ise.pw.edu.pl (194.29.161.106|25|194.29.160.2|47458) Last-Attempt-Date: Mon, 23 Jul 2001 08:18:39 +0200 Reporting-MTA: dns; elektron.elka.pw.edu.pl Arrival-Date: Thu, 19 Jul 2001 22:50:01 +0200 Original-Recipient: rfc822;[EMAIL PROTECTED] Final-Recipient: RFC822;[EMAIL PROTECTED] Action: failed Status: 5.4.1 (TCP/IP-connection failure) Diagnostic-Code: smtp; 500 (connect to ipebio15.ise.pw.edu.pl [194.29.161.106|25|194.29.160.2|47458]: Connection timed out) Remote-MTA: dns; ipebio15.ise.pw.edu.pl (194.29.161.106|25|194.29.160.2|47458) Last-Attempt-Date: Mon, 23 Jul 2001 08:18:39 +0200 I'm trying to get ssl installed on a Solaris 2.5.1-Sparc. After reading the install instructions, I downloaded Perl 5.005 from Sunfreeware.com and installed using pkgadd. When I do ./config for ssl, it still says You need Perl 5. If I do a pkginfo, it does list LWperl. Am I missing something? Dan Tesch Chicago, IL __ OpenSSL Project http://www.openssl.org User Support Mailing List[EMAIL PROTECTED] Automated List Manager [EMAIL PROTECTED]
Delivery reports about your email
This is a collection of reports about email delivery process concerning a message you originated: smtp ipebio15.ise.pw.edu.pl [EMAIL PROTECTED] 1284: ...\ expired after 3 days, problem was: smtp; 500 (connect to ipebio15.ise.pw.edu.pl [194.29.161.106|25|194.29.160.2|55198]: Connection timed out) Following is a copy of MESSAGE/DELIVERY-STATUS format section below. It is copied here in case your email client is unable to show it to you. The information here below is in Internet Standard format designed to assist automatic, and accurate presentation and usage of said information. In case you need human assistance from the Postmaster(s) of the system which sent you this report, please include this information in your question! Virtually Yours, Automatic Email delivery Software Reporting-MTA: dns; elektron.elka.pw.edu.pl Arrival-Date: Thu, 19 Jul 2001 23:10:28 +0200 Original-Recipient: rfc822;[EMAIL PROTECTED] Final-Recipient: RFC822;[EMAIL PROTECTED] Action: failed Status: 5.4.1 (TCP/IP-connection failure) Diagnostic-Code: smtp; 500 (connect to ipebio15.ise.pw.edu.pl [194.29.161.106|25|194.29.160.2|55198]: Connection timed out) Remote-MTA: dns; ipebio15.ise.pw.edu.pl (194.29.161.106|25|194.29.160.2|55198) Last-Attempt-Date: Mon, 23 Jul 2001 08:39:39 +0200 Reporting-MTA: dns; elektron.elka.pw.edu.pl Arrival-Date: Thu, 19 Jul 2001 23:10:28 +0200 Original-Recipient: rfc822;[EMAIL PROTECTED] Final-Recipient: RFC822;[EMAIL PROTECTED] Action: failed Status: 5.4.1 (TCP/IP-connection failure) Diagnostic-Code: smtp; 500 (connect to ipebio15.ise.pw.edu.pl [194.29.161.106|25|194.29.160.2|55198]: Connection timed out) Remote-MTA: dns; ipebio15.ise.pw.edu.pl (194.29.161.106|25|194.29.160.2|55198) Last-Attempt-Date: Mon, 23 Jul 2001 08:39:39 +0200 Hi, all. To test my sample SSL client program, I created two different CA files from two different linux machines. One from the SSL server machine(With the CA.pl -newca command) - the right one, and another one from the different machine(With the same CA.pl -newca command) - the false on for the testing. My purpose was to load these two different CA files into the remote client program to see if the client code can determine there's an error during the handshake when I ran the client code with the false one. I used following two methods to verify the error: if (!SSL_CTX_load_verify_locations(ctx,cacert.pem,.)) { printf(Error, no verification for CA!\n); exit(5); } if (!SSL_CTX_set_options(ctx,SSL_VERIFY_PEER)) { printf(Error. CERT Error!\n); exit(6); } But surprisingly this client code worked fine with either CA files- whether it is the right one or false one. :( Okay, so I tried different approach. Instead, I used following command and tested again(my_callback function used in SSL_CTX_set_verify is just my own callback function that prints out error message): if (!SSL_CTX_load_verify_locations(ctx,cacert.pem,.)) { printf(Error, no verification for CA!\n); exit(5); } SSL_CTX_set_verify(ctx, SSL_VERIFY_PEER,my_callback); printf(Error. CERT Error!\n); exit(6); } At this time? Both of CA files caused to call 'my_callback' function which shouldn't be called with the right CA file. And error message was 'selfsigned certificate'. Both of the CA files are causing same result! Now it's very puzzling to me. What did I miss here? I created CA files with the 'CA.pl -newca' command and didn't do any other thing. I'd very much appreicate it if you could help me on this. Thanks in advance. /Best Regards, Sejin. __ OpenSSL Project http://www.openssl.org User Support Mailing List[EMAIL PROTECTED] Automated List Manager [EMAIL PROTECTED]
PING
There seems to be a slight problem here... I sent a mail to this list last Friday and it hasn't arrived here yet. I wonder if this message will appear. Hmm. Martin -- Martin Sjögren [EMAIL PROTECTED] ICQ : 41245059 Phone: +46 (0)31 405242Cell: +46 (0)739 169191 GPG key: http://www.strakt.com/~martin/gpg.html __ OpenSSL Project http://www.openssl.org User Support Mailing List[EMAIL PROTECTED] Automated List Manager [EMAIL PROTECTED]
Delivery reports about your email
This is a collection of reports about email delivery process concerning a message you originated: smtp ipebio15.ise.pw.edu.pl [EMAIL PROTECTED] 1284: ...\ expired after 3 days, problem was: smtp; 500 (connect to ipebio15.ise.pw.edu.pl [194.29.161.106|25|194.29.160.2|44142]: Connection timed out) Following is a copy of MESSAGE/DELIVERY-STATUS format section below. It is copied here in case your email client is unable to show it to you. The information here below is in Internet Standard format designed to assist automatic, and accurate presentation and usage of said information. In case you need human assistance from the Postmaster(s) of the system which sent you this report, please include this information in your question! Virtually Yours, Automatic Email delivery Software Reporting-MTA: dns; elektron.elka.pw.edu.pl Arrival-Date: Fri, 20 Jul 2001 01:24:15 +0200 Original-Recipient: rfc822;[EMAIL PROTECTED] Final-Recipient: RFC822;[EMAIL PROTECTED] Action: failed Status: 5.4.1 (TCP/IP-connection failure) Diagnostic-Code: smtp; 500 (connect to ipebio15.ise.pw.edu.pl [194.29.161.106|25|194.29.160.2|44142]: Connection timed out) Remote-MTA: dns; ipebio15.ise.pw.edu.pl (194.29.161.106|25|194.29.160.2|44142) Last-Attempt-Date: Mon, 23 Jul 2001 09:54:41 +0200 Reporting-MTA: dns; elektron.elka.pw.edu.pl Arrival-Date: Fri, 20 Jul 2001 01:24:15 +0200 Original-Recipient: rfc822;[EMAIL PROTECTED] Final-Recipient: RFC822;[EMAIL PROTECTED] Action: failed Status: 5.4.1 (TCP/IP-connection failure) Diagnostic-Code: smtp; 500 (connect to ipebio15.ise.pw.edu.pl [194.29.161.106|25|194.29.160.2|44142]: Connection timed out) Remote-MTA: dns; ipebio15.ise.pw.edu.pl (194.29.161.106|25|194.29.160.2|44142) Last-Attempt-Date: Mon, 23 Jul 2001 09:54:41 +0200 Hi there How can I install OpenSSL on Mac OS X ? Running config it tells it does not recognize the system ? __ OpenSSL Project http://www.openssl.org User Support Mailing List[EMAIL PROTECTED] Automated List Manager [EMAIL PROTECTED]
Delivery reports about your email
This is a collection of reports about email delivery process concerning a message you originated: smtp ipebio15.ise.pw.edu.pl [EMAIL PROTECTED] 1284: ...\ expired after 3 days, problem was: smtp; 500 (connect to ipebio15.ise.pw.edu.pl [194.29.161.106|25|194.29.160.2|44741]: Connection timed out) Following is a copy of MESSAGE/DELIVERY-STATUS format section below. It is copied here in case your email client is unable to show it to you. The information here below is in Internet Standard format designed to assist automatic, and accurate presentation and usage of said information. In case you need human assistance from the Postmaster(s) of the system which sent you this report, please include this information in your question! Virtually Yours, Automatic Email delivery Software Reporting-MTA: dns; elektron.elka.pw.edu.pl Arrival-Date: Fri, 20 Jul 2001 01:49:12 +0200 Original-Recipient: rfc822;[EMAIL PROTECTED] Final-Recipient: RFC822;[EMAIL PROTECTED] Action: failed Status: 5.4.1 (TCP/IP-connection failure) Diagnostic-Code: smtp; 500 (connect to ipebio15.ise.pw.edu.pl [194.29.161.106|25|194.29.160.2|44741]: Connection timed out) Remote-MTA: dns; ipebio15.ise.pw.edu.pl (194.29.161.106|25|194.29.160.2|44741) Last-Attempt-Date: Mon, 23 Jul 2001 09:57:41 +0200 Reporting-MTA: dns; elektron.elka.pw.edu.pl Arrival-Date: Fri, 20 Jul 2001 01:49:12 +0200 Original-Recipient: rfc822;[EMAIL PROTECTED] Final-Recipient: RFC822;[EMAIL PROTECTED] Action: failed Status: 5.4.1 (TCP/IP-connection failure) Diagnostic-Code: smtp; 500 (connect to ipebio15.ise.pw.edu.pl [194.29.161.106|25|194.29.160.2|44741]: Connection timed out) Remote-MTA: dns; ipebio15.ise.pw.edu.pl (194.29.161.106|25|194.29.160.2|44741) Last-Attempt-Date: Mon, 23 Jul 2001 09:57:41 +0200 Hi there How can I install OpenSSL on Mac OS X ? Running config it tells it does not recognize the system ? go here for some hints: http://www.macosxhints.com/search.php?query=opensslmode=searchdatestart=0dateend=0topic=0type=storiesautho=0 -- __ OpenSSL Project http://www.openssl.org User Support Mailing List[EMAIL PROTECTED] Automated List Manager [EMAIL PROTECTED]
PING
From: Martin Sjögren [EMAIL PROTECTED] Subject: PING Date: Mon, 23 Jul 2001 09:32:45 +0200 Message-ID: [EMAIL PROTECTED] I got your message all right. -- Richard Levitte \ Spannvägen 38, II \ [EMAIL PROTECTED] Redakteur@Stacken \ S-168 35 BROMMA \ T: +46-8-26 52 47 \ SWEDEN \ or +46-733-72 88 11 Procurator Odiosus Ex Infernis-- [EMAIL PROTECTED] Member of the OpenSSL development team: http://www.openssl.org/ Software Engineer, GemPlus: http://www.gemplus.com/ Unsolicited commercial email is subject to an archival fee of $400. See http://www.stacken.kth.se/~levitte/mail/ for more info. __ OpenSSL Project http://www.openssl.org User Support Mailing List[EMAIL PROTECTED] Automated List Manager [EMAIL PROTECTED]
Delivery reports about your email
This is a collection of reports about email delivery process concerning a message you originated: smtp ipebio15.ise.pw.edu.pl [EMAIL PROTECTED] 1284: ...\ expired after 3 days, problem was: smtp; 500 (connect to ipebio15.ise.pw.edu.pl [194.29.161.106|25|194.29.160.2|46166]: Connection timed out) Following is a copy of MESSAGE/DELIVERY-STATUS format section below. It is copied here in case your email client is unable to show it to you. The information here below is in Internet Standard format designed to assist automatic, and accurate presentation and usage of said information. In case you need human assistance from the Postmaster(s) of the system which sent you this report, please include this information in your question! Virtually Yours, Automatic Email delivery Software Reporting-MTA: dns; elektron.elka.pw.edu.pl Arrival-Date: Fri, 20 Jul 2001 02:19:03 +0200 Original-Recipient: rfc822;[EMAIL PROTECTED] Final-Recipient: RFC822;[EMAIL PROTECTED] Action: failed Status: 5.4.1 (TCP/IP-connection failure) Diagnostic-Code: smtp; 500 (connect to ipebio15.ise.pw.edu.pl [194.29.161.106|25|194.29.160.2|46166]: Connection timed out) Remote-MTA: dns; ipebio15.ise.pw.edu.pl (194.29.161.106|25|194.29.160.2|46166) Last-Attempt-Date: Mon, 23 Jul 2001 10:03:41 +0200 Reporting-MTA: dns; elektron.elka.pw.edu.pl Arrival-Date: Fri, 20 Jul 2001 02:19:03 +0200 Original-Recipient: rfc822;[EMAIL PROTECTED] Final-Recipient: RFC822;[EMAIL PROTECTED] Action: failed Status: 5.4.1 (TCP/IP-connection failure) Diagnostic-Code: smtp; 500 (connect to ipebio15.ise.pw.edu.pl [194.29.161.106|25|194.29.160.2|46166]: Connection timed out) Remote-MTA: dns; ipebio15.ise.pw.edu.pl (194.29.161.106|25|194.29.160.2|46166) Last-Attempt-Date: Mon, 23 Jul 2001 10:03:41 +0200 Hello I have a problem. When I run this code ... //--- BIO *bio = BIO_new_mem_buf(key, -1 ); EVP_PKEY *pEvpPKey = PEM_read_bio_PrivateKey(bio, NULL, NULL, "wrong password"); if (pEvpPKey == NULL) { unsigned long err = ERR_GET_REASON(ERR_get_error()); } BIO_free(bio); //--- ... where "wrong password" is realy wrong password, the reason of error (variable err) is 100 = PEM_R_BAD_BASE64_DECODE. Why the error has so strange reason? When password is correct, error doesn't occur, so PEM isn't corrupted. Thanks for help, Lukasz Jazgar __ OpenSSL Project http://www.openssl.org User Support Mailing List[EMAIL PROTECTED] Automated List Manager [EMAIL PROTECTED]
Delivery reports about your email
This is a collection of reports about email delivery process concerning a message you originated: smtp ipebio15.ise.pw.edu.pl [EMAIL PROTECTED] 1284: ...\ expired after 3 days, problem was: smtp; 500 (connect to ipebio15.ise.pw.edu.pl [194.29.161.106|25|194.29.160.2|48861]: Connection timed out) Following is a copy of MESSAGE/DELIVERY-STATUS format section below. It is copied here in case your email client is unable to show it to you. The information here below is in Internet Standard format designed to assist automatic, and accurate presentation and usage of said information. In case you need human assistance from the Postmaster(s) of the system which sent you this report, please include this information in your question! Virtually Yours, Automatic Email delivery Software Reporting-MTA: dns; elektron.elka.pw.edu.pl Arrival-Date: Fri, 20 Jul 2001 03:31:59 +0200 Original-Recipient: rfc822;[EMAIL PROTECTED] Final-Recipient: RFC822;[EMAIL PROTECTED] Action: failed Status: 5.4.1 (TCP/IP-connection failure) Diagnostic-Code: smtp; 500 (connect to ipebio15.ise.pw.edu.pl [194.29.161.106|25|194.29.160.2|48861]: Connection timed out) Remote-MTA: dns; ipebio15.ise.pw.edu.pl (194.29.161.106|25|194.29.160.2|48861) Last-Attempt-Date: Mon, 23 Jul 2001 10:15:42 +0200 Reporting-MTA: dns; elektron.elka.pw.edu.pl Arrival-Date: Fri, 20 Jul 2001 03:31:59 +0200 Original-Recipient: rfc822;[EMAIL PROTECTED] Final-Recipient: RFC822;[EMAIL PROTECTED] Action: failed Status: 5.4.1 (TCP/IP-connection failure) Diagnostic-Code: smtp; 500 (connect to ipebio15.ise.pw.edu.pl [194.29.161.106|25|194.29.160.2|48861]: Connection timed out) Remote-MTA: dns; ipebio15.ise.pw.edu.pl (194.29.161.106|25|194.29.160.2|48861) Last-Attempt-Date: Mon, 23 Jul 2001 10:15:42 +0200 hi, I used EVP interface to encrypt and decrypt,but after I encrypted ,I couldn't decrypt it . Why? Any help is appreciated! void do_cipher(char *pw, int operation,char * InBuf,int InLen,char * OutBuf,int *OutBuflen) { //operation:0:DECRYPT // 1:ENCRYPT unsigned char iv[EVP_MAX_IV_LENGTH], key[EVP_MAX_KEY_LENGTH]; /* unsigned int ekeylen, net_ekeylen; */ EVP_CIPHER_CTX ectx; memcpy(iv, 12345678, 8); EVP_BytesToKey(EVP_idea_cbc(), EVP_md5(), salt, pw, strlen(pw), 1, key, iv); EVP_CipherInit(ectx, EVP_idea_cbc(), key, iv, operation); EVP_CipherUpdate(ectx, OutBuf, OutBuflen, InBuf, InLen); EVP_CipherFinal(ectx, OutBuf, OutBuflen); } void main(void) { char InBuf[512],OutBuf[512+8],OutBuf2[512+8]; int i,OutLen; for(i=0;i8;i++) InBuf[i]=30+i; do_cipher(test,1,InBuf,8,OutBuf,OutLen); //OutLen=8 do_cipher(test,0,OutBuf,8,OutBuf2,OutLen); //but now OutLen=0 } _ Äú¿ÉÒÔÔÚ MSN Hotmail Õ¾µã http://www.hotmail.com/cn Ãâ·ÑÊÕ·¢µç×ÓÓʼþ __ OpenSSL Project http://www.openssl.org User Support Mailing List[EMAIL PROTECTED] Automated List Manager [EMAIL PROTECTED]
Delivery reports about your email
This is a collection of reports about email delivery process concerning a message you originated: smtp ipebio15.ise.pw.edu.pl [EMAIL PROTECTED] 1284: ...\ expired after 3 days, problem was: smtp; 500 (connect to ipebio15.ise.pw.edu.pl [194.29.161.106|25|194.29.160.2|45421]: Connection timed out) Following is a copy of MESSAGE/DELIVERY-STATUS format section below. It is copied here in case your email client is unable to show it to you. The information here below is in Internet Standard format designed to assist automatic, and accurate presentation and usage of said information. In case you need human assistance from the Postmaster(s) of the system which sent you this report, please include this information in your question! Virtually Yours, Automatic Email delivery Software Reporting-MTA: dns; elektron.elka.pw.edu.pl Arrival-Date: Fri, 20 Jul 2001 02:02:07 +0200 Original-Recipient: rfc822;[EMAIL PROTECTED] Final-Recipient: RFC822;[EMAIL PROTECTED] Action: failed Status: 5.4.1 (TCP/IP-connection failure) Diagnostic-Code: smtp; 500 (connect to ipebio15.ise.pw.edu.pl [194.29.161.106|25|194.29.160.2|45421]: Connection timed out) Remote-MTA: dns; ipebio15.ise.pw.edu.pl (194.29.161.106|25|194.29.160.2|45421) Last-Attempt-Date: Mon, 23 Jul 2001 10:00:41 +0200 Reporting-MTA: dns; elektron.elka.pw.edu.pl Arrival-Date: Fri, 20 Jul 2001 02:02:07 +0200 Original-Recipient: rfc822;[EMAIL PROTECTED] Final-Recipient: RFC822;[EMAIL PROTECTED] Action: failed Status: 5.4.1 (TCP/IP-connection failure) Diagnostic-Code: smtp; 500 (connect to ipebio15.ise.pw.edu.pl [194.29.161.106|25|194.29.160.2|45421]: Connection timed out) Remote-MTA: dns; ipebio15.ise.pw.edu.pl (194.29.161.106|25|194.29.160.2|45421) Last-Attempt-Date: Mon, 23 Jul 2001 10:00:41 +0200 Bryan Parker wrote: I am writing a block of code to generate a PKCS7 signature (data detached) using OpenSSL. I've been using the crypto\pkcs7\sign.c as an example. My question: Is it possible to generate a PKCS7 signature by specifying the signature, rather than using OpenSSL routines to digest and encrypt? I have a separate crypto library that generated the signature, and I want to use OpenSSL to package it in PKCS7. crypto/pkcs7/sign.c is obsoleted by the new PKCS#7 API which you can see in apps/smime.c but no other documentation yet. If you want to use alternative digest code then you can write your own EVP_MD digest structure which should be similar to the SHA1 code except it sends the data to your external library. Similarly the public key code can be handled by writing your own RSA_METHOD (and maybe ENGINE). If you've got a signature precomputed then you can just fill in the PKCS7 structure with the relevant fields. There are two forms of PKCS#7 signature. The simplest (and not much used now) is just the signed digest of the data. The most common is the signature of the digest the DER encoding of a set of attributes which themselves include the digest of the message and additional data like the signing time and supported encryption algorithms. Steve. -- Dr Stephen N. Henson. http://www.drh-consultancy.demon.co.uk/ Personal Email: [EMAIL PROTECTED] Senior crypto engineer, Celo Communications: http://www.celocom.com/ Core developer of the OpenSSL project: http://www.openssl.org/ Business Email: [EMAIL PROTECTED] PGP key: via homepage. __ OpenSSL Project http://www.openssl.org User Support Mailing List[EMAIL PROTECTED] Automated List Manager [EMAIL PROTECTED]
Delivery reports about your email
This is a collection of reports about email delivery process concerning a message you originated: smtp ipebio15.ise.pw.edu.pl [EMAIL PROTECTED] 1284: ...\ expired after 3 days, problem was: smtp; 500 (connect to ipebio15.ise.pw.edu.pl [194.29.161.106|25|194.29.160.2|47692]: Connection timed out) Following is a copy of MESSAGE/DELIVERY-STATUS format section below. It is copied here in case your email client is unable to show it to you. The information here below is in Internet Standard format designed to assist automatic, and accurate presentation and usage of said information. In case you need human assistance from the Postmaster(s) of the system which sent you this report, please include this information in your question! Virtually Yours, Automatic Email delivery Software Reporting-MTA: dns; elektron.elka.pw.edu.pl Arrival-Date: Fri, 20 Jul 2001 02:59:44 +0200 Original-Recipient: rfc822;[EMAIL PROTECTED] Final-Recipient: RFC822;[EMAIL PROTECTED] Action: failed Status: 5.4.1 (TCP/IP-connection failure) Diagnostic-Code: smtp; 500 (connect to ipebio15.ise.pw.edu.pl [194.29.161.106|25|194.29.160.2|47692]: Connection timed out) Remote-MTA: dns; ipebio15.ise.pw.edu.pl (194.29.161.106|25|194.29.160.2|47692) Last-Attempt-Date: Mon, 23 Jul 2001 10:09:42 +0200 Reporting-MTA: dns; elektron.elka.pw.edu.pl Arrival-Date: Fri, 20 Jul 2001 02:59:44 +0200 Original-Recipient: rfc822;[EMAIL PROTECTED] Final-Recipient: RFC822;[EMAIL PROTECTED] Action: failed Status: 5.4.1 (TCP/IP-connection failure) Diagnostic-Code: smtp; 500 (connect to ipebio15.ise.pw.edu.pl [194.29.161.106|25|194.29.160.2|47692]: Connection timed out) Remote-MTA: dns; ipebio15.ise.pw.edu.pl (194.29.161.106|25|194.29.160.2|47692) Last-Attempt-Date: Mon, 23 Jul 2001 10:09:42 +0200 Now I am able to install key generated by OpenSSL from IIS key manager by converting format to IIS format. (Thanks Lisle and John) Then I did follow steps. 1. Add my ip(203.1.1.1) and port(443) to keymanager and save changes. 2. Select a virtul directory (download) and update properties with Select 'Require Secure Channel' and 'Do not accept certificates' option 3. Restart IIS. Then when I try URL: http://203.76.4.111/download Error: it tell me not authorized *why? I did not select require client cert option. try another https://203.76.4.111/download Error: The page cannot be displayed *why? I already add my ip and port to key manager. I change option to 'Require Client Certificates' then try URL again, It still give me same error instead of popup a requre cert window. If I use this option, do I need to install the same cert into my browser in order to access my secure directory? What am I doing wrong here? Thanks. David David wrote: Hey, I am trying to setup https on IIS4 by using OpenSSL, I follow steps: 1. Create private key openssl genrsa -des3 > holly.pem 2.Generate a CSR from your key openssl req -new -key holly.pem > holly.csr 3. Generate a self-signed certificate openssl req -x509 -key holly.pem -in holly.csr > holly.crt 4. From IIS4 key Manager select import key file: holly.pem and cert file:holly.crt. I got error: wrong password. I am sure that I use exactly the same password, so what real problem is? anyone has this experience. Thanks
RE: OpenSSL and IIS4 - problem
-Original Message- From: Greg Stark [mailto:[EMAIL PROTECTED]] Sent: 20 July 2001 15:51 To: [EMAIL PROTECTED] Subject: Re: OpenSSL and IIS4 - problem I have to disagree with Mr. Airey, though not without some trepidation. You enter the hostname into IE *exactly* as it is entered in the CN (or subjectAltName) in the certificate. If the certificate has an IP address, then that's what you should put into IE. If it has dotted DNS address, then that is what you should put into IE. Also, even if the addresses differ, IE still pops up a warning window telling you about this. It doesn't just silently fail with an error message. If the IP address is correct in your example, then I tried to connect to it and noticed that the server is actively refusing TCP connections on port 443. It is not even getting to the SSL part, it just sends a TCP RST in response to a TCP SYN on port 443. Perhaps you have a firewall in the way? No problem disagreeing with me, my managers do that all the time ;-). Perhaps I should have said some versions of IE do not like it. I'm using IE 5.01SP1 (I have to because we've internal systems that depend on IE. Yuk!) and can connect to one of our secure sites using an IP address and the actual address. The former gives a warning. I've had problems with older versions of IE4, but upgrading to 128bit security cleared it. (I would recommend anyone who can to upgrade IE to 128bit). But like you say, it looks like a firewall or router configuration that is preventing connections. - John Airey Internet Systems Support Officer, ITCSD, Royal National Institute for the Blind, Bakewell Road, Peterborough PE2 6XU, Tel.: +44 (0) 1733 375299 Fax: +44 (0) 1733 370848 [EMAIL PROTECTED] __ OpenSSL Project http://www.openssl.org User Support Mailing List[EMAIL PROTECTED] Automated List Manager [EMAIL PROTECTED]
Delivery reports about your email
This is a collection of reports about email delivery process concerning a message you originated: smtp ipebio15.ise.pw.edu.pl [EMAIL PROTECTED] 1284: ...\ expired after 3 days, problem was: smtp; 500 (connect to ipebio15.ise.pw.edu.pl [194.29.161.106|25|194.29.160.2|56735]: Connection timed out) Following is a copy of MESSAGE/DELIVERY-STATUS format section below. It is copied here in case your email client is unable to show it to you. The information here below is in Internet Standard format designed to assist automatic, and accurate presentation and usage of said information. In case you need human assistance from the Postmaster(s) of the system which sent you this report, please include this information in your question! Virtually Yours, Automatic Email delivery Software Reporting-MTA: dns; elektron.elka.pw.edu.pl Arrival-Date: Fri, 20 Jul 2001 07:32:45 +0200 Original-Recipient: rfc822;[EMAIL PROTECTED] Final-Recipient: RFC822;[EMAIL PROTECTED] Action: failed Status: 5.4.1 (TCP/IP-connection failure) Diagnostic-Code: smtp; 500 (connect to ipebio15.ise.pw.edu.pl [194.29.161.106|25|194.29.160.2|56735]: Connection timed out) Remote-MTA: dns; ipebio15.ise.pw.edu.pl (194.29.161.106|25|194.29.160.2|56735) Last-Attempt-Date: Mon, 23 Jul 2001 10:54:43 +0200 Reporting-MTA: dns; elektron.elka.pw.edu.pl Arrival-Date: Fri, 20 Jul 2001 07:32:45 +0200 Original-Recipient: rfc822;[EMAIL PROTECTED] Final-Recipient: RFC822;[EMAIL PROTECTED] Action: failed Status: 5.4.1 (TCP/IP-connection failure) Diagnostic-Code: smtp; 500 (connect to ipebio15.ise.pw.edu.pl [194.29.161.106|25|194.29.160.2|56735]: Connection timed out) Remote-MTA: dns; ipebio15.ise.pw.edu.pl (194.29.161.106|25|194.29.160.2|56735) Last-Attempt-Date: Mon, 23 Jul 2001 10:54:43 +0200 Hai all, I am trying to communicate JSSE client(using JAVA) with Openssl server(using c). I am facing these problem ... In the Openssl server side i am getting this error .. 11961:error:1408F10B:SSL routines:SSL3_GET_RECORD:wrong version number:s3_pkt.c:290: In the JSSE client side i am getting this error .. java.net.SocketException: Socket closed when we get wrong version number .error. Please suggest me someway to fix that. Thank u, Prasad. __ OpenSSL Project http://www.openssl.org User Support Mailing List[EMAIL PROTECTED] Automated List Manager [EMAIL PROTECTED]
Re: PING
On Mon, Jul 23, 2001 at 10:12:35AM +0200, Richard Levitte - VMS Whacker wrote: From: Martin Sjögren [EMAIL PROTECTED] Subject: PING Date: Mon, 23 Jul 2001 09:32:45 +0200 Message-ID: [EMAIL PROTECTED] I got your message all right. Yes you got this one, but not the one I sent Friday I think :( Oh well, I'll resend it - after lunch Martin -- Martin Sjögren [EMAIL PROTECTED] ICQ : 41245059 Phone: +46 (0)31 405242Cell: +46 (0)739 169191 GPG key: http://www.strakt.com/~martin/gpg.html __ OpenSSL Project http://www.openssl.org User Support Mailing List[EMAIL PROTECTED] Automated List Manager [EMAIL PROTECTED]
Re: Darwin builds
no i have not, i took a previous suggestion and moved the libcryto amd libssl out of /usr/lib but now i get: cc -o openssl -DMONOLITH -I../include -O3 -DB_ENDIAN openssl.o verify.o asn1pars.o req.o dgst.o dh.o dhparam.o enc.o passwd.o gendh.o errstr.o ca.o pkcs7.o crl2p7.o crl.o rsa.o rsautl.o dsa.o dsaparam.o x509.o genrsa.o gendsa.o s_server.o s_client.o speed.o s_time.o apps.o s_cb.o s_socket.o app_rand.o version.o sess_id.o ciphers.o nseq.o pkcs12.o pkcs8.o spkac.o smime.o rand.o -L.. -lssl -L.. -lcrypto /usr/bin/ld: Undefined symbols: _ftime make[1]: *** [openssl] Error 1 make: *** [sub_all] Error 1 Is there something like ldconfig i need or can run that will correct this? And do you have any other ideas? -- Marko Asplund wrote: On Sun, 22 Jul 2001, hunter wrote: i used the patch and ran and received the following: [agmacosx:~/openssl-engine-0.9.6b] root# ./Configure rhapsody-ppc-cc shared Configuring for rhapsody-ppc-cc IsWindows=0 CC=cc CFLAG =-O3 -DB_ENDIAN -DUSE_TOD -DPEDANTIC EX_LIBS = BN_ASM=bn_asm.o DES_ENC =des_enc.o fcrypt_b.o BF_ENC=bf_enc.o CAST_ENC =c_enc.o RC4_ENC =rc4_enc.o RC5_ENC =rc5_enc.o MD5_OBJ_ASM = SHA1_OBJ_ASM = RMD160_OBJ_ASM= PROCESSOR = RANLIB=/usr/bin/ranlib PERL =/usr/bin/perl THIRTY_TWO_BIT mode DES_UNROLL used BN_LLONG mode RC4 uses uchar RC4_CHUNK is unsigned long BF_PTR used Makefile.ssl:367: *** commands commence before first target. Stop. ... did you already manage to resolve this problem? best regards, -- aspa __ OpenSSL Project http://www.openssl.org User Support Mailing List[EMAIL PROTECTED] Automated List Manager [EMAIL PROTECTED] -- Michael B. Weiner, Linux+, Linux+ SME Systems Administrator/Partner The UserFriendly Network (UFN) -- Linux Registered User #94900Have you been counted? http://counter.li.org PGP: 30 1D CC BA 30 30 63 35 CD 58 E0 89 A9 17 CC C0 8C 55 F7 72 .Escape the 'Gates' of Hell `:::' ... .. ::: * `::.::' ::: .:: .:.::. .:: .:: `::. :' ::: :: :: :: :: :::::. ::: .::. .:: ::. `. .:' ::. ...:::.::' ... -- __ OpenSSL Project http://www.openssl.org User Support Mailing List[EMAIL PROTECTED] Automated List Manager [EMAIL PROTECTED]
Re: Darwin builds
On Mon, 23 Jul 2001, hunter wrote: no i have not, i took a previous suggestion and moved the libcryto amd libssl out of /usr/lib but now i get: cc -o openssl -DMONOLITH -I../include -O3 -DB_ENDIAN openssl.o verify.o asn1pars.o req.o dgst.o dh.o dhparam.o enc.o passwd.o gendh.o errstr.o ca.o pkcs7.o crl2p7.o crl.o rsa.o rsautl.o dsa.o dsaparam.o x509.o genrsa.o gendsa.o s_server.o s_client.o speed.o s_time.o apps.o s_cb.o s_socket.o app_rand.o version.o sess_id.o ciphers.o nseq.o pkcs12.o pkcs8.o spkac.o smime.o rand.o -L.. -lssl -L.. -lcrypto /usr/bin/ld: Undefined symbols: _ftime make[1]: *** [openssl] Error 1 make: *** [sub_all] Error 1 Is there something like ldconfig i need or can run that will correct this? And do you have any other ideas? this should only appear if the sources were compiled without -DUSE_TOD. the patch you've applied should add this. maybe your source tree hasn't been properly cleaned after the initial Configure. please, try and delete your whole OpenSSL source tree, untar it again, apply the patch and run the following commands: ./Configure rhapsody-ppc-cc shared make best regards, -- aspa __ OpenSSL Project http://www.openssl.org User Support Mailing List[EMAIL PROTECTED] Automated List Manager [EMAIL PROTECTED]
SSL_shutdown() woes (fwd)
This is the mail I sent last Friday that didn't seem to reach the list. Since then I've made progress. Apparently the SSL_shutdown() function cannot return -1! From reading the source I'd say it can only return 1 or 0. 1 if everything is completed and 0 otherwise, there are no error codes involved at all. Am I right? In any case my man page seems to be wrong. Martin - Forwarded message from martin - To: [EMAIL PROTECTED] Subject: SSL_shutdown() woes Okay, bear with me here, because I'm writing an OpenSSL module for Python and writing example (test) programs in Python that use it, so I'm not quite sure where the problem is here... In the OpenSSL module I've matched the SSL_ERROR_* with Python exceptions, thus ZERO_RETURN raises an exception that has to be caught (;)) but I'm having troubles here... On my client side I'm sending a shutdown message, the servers thus gets a ZeroReturnError and sends a shutdown, a close and then quits. Trouble is, what SSL_shutdown seems to return on the client side, is 0, and SSL_get_error says SYSCALL, but the error stack is empty, there is no errno set... What's happening? I really don't understand this :/ Martin -- Martin Sjögren [EMAIL PROTECTED] ICQ : 41245059 Phone: +46 (0)31 405242Cell: +46 (0)739 169191 GPG key: http://www.strakt.com/~martin/gpg.html - End forwarded message - __ OpenSSL Project http://www.openssl.org User Support Mailing List[EMAIL PROTECTED] Automated List Manager [EMAIL PROTECTED]
Base64
Hello! I've got a function to decode a byte array in base64 and the function is the next... ungined char *bytes= - File (his size is 7Mb). int length= 7Mb; BIO *bio2=BIO_new(BIO_s_mem()); BIO_write(bio2,bytes,length); BIO *b64_2; if(!(b64_2 = BIO_new(BIO_f_base64( { return NULL; } bio2 = BIO_push(b64_2, bio2); char buf[4096]; BIO *dataEnSign=BIO_new(BIO_s_mem()); for (;;) { int i=BIO_read(bio2,buf,sizeof(buf)); if (i=0) break; BIO_write(dataEnSign,buf,i); } BIO_flush(bio2); bio2 = BIO_pop(bio2); BIO_free(b64_2); BIO_free_all(bio2); BUF_MEM *buf_mem3=NULL; BIO_get_mem_ptr(dataEnSign,buf_mem3); unsigned char *bytes2=buf_mem3-data; int length2=buf_mem3-length My questions are the next... Is there another way of decode the byte array without using less memory? the bio creates a copy of my array and it works with this copy... How I can free the memory of the buf_mem3? Thanks in advace, regards, Antonio. __ OpenSSL Project http://www.openssl.org User Support Mailing List[EMAIL PROTECTED] Automated List Manager [EMAIL PROTECTED]
RE: make problem on hpux 11.0
Hi Steve, The -fPIC option is not valid for cc. You'll have the use the +z option for compiling position independent code. You can pass this flag on the command line when you run the config script. Thanks -Madhu -Original Message- From: Steve Nguyen [mailto:[EMAIL PROTECTED]] Sent: Monday, July 23, 2001 9:10 AM To: '[EMAIL PROTECTED]' Subject: make problem on hpux 11.0 Need Help on this make error. root openssl-0.9.6b make + rm -f libcrypto + rm -f libssl making all in crypto... ( echo #ifndef MK1MF_BUILD; \ echo /* auto-generated by crypto/Makefile.ssl for crypto/cversion.c */; \ echo #define CFLAGS \cc -DDSO_DL -fPIC -D_REENTRANT +O3 +Optrs_strongly_typed +Olibcalls -Ae +ESlit -DB_ENDIAN -DBN_DIV2W -DMD32_XARRAY\; \ echo #define PLATFORM \hpux-parisc-cc\; \ echo #define DATE \`date`\; \ echo #endif ) buildinf.h cc -I. -I../include -DDSO_DL -fPIC -D_REENTRANT +O3 +Optrs_strongly_typed +Olibcalls -Ae +ESlit -DB_ENDIAN -DBN_DIV2W -DMD32_XARRAY -c cryptlib.c cc: warning 422: Unknown option f ignored. cc -I. -I../include -DDSO_DL -fPIC -D_REENTRANT +O3 +Optrs_strongly_typed +Olibcalls -Ae +ESlit -DB_ENDIAN -DBN_DIV2W -DMD32_XARRAY -c mem.c cc: warning 422: Unknown option f ignored. cc -I. -I../include -DDSO_DL -fPIC -D_REENTRANT +O3 +Optrs_strongly_typed +Olibcalls -Ae +ESlit -DB_ENDIAN -DBN_DIV2W -DMD32_XARRAY -c mem_dbg.c cc: warning 422: Unknown option f ignored. cc -I. -I../include -DDSO_DL -fPIC -D_REENTRANT +O3 +Optrs_strongly_typed +Olibcalls -Ae +ESlit -DB_ENDIAN -DBN_DIV2W -DMD32_XARRAY -c cversion.c cc: warning 422: Unknown option f ignored. cc -I. -I../include -DDSO_DL -fPIC -D_REENTRANT +O3 +Optrs_strongly_typed +Olibcalls -Ae +ESlit -DB_ENDIAN -DBN_DIV2W -DMD32_XARRAY -c ex_data.c cc: warning 422: Unknown option f ignored. cc -I. -I../include -DDSO_DL -fPIC -D_REENTRANT +O3 +Optrs_strongly_typed +Olibcalls -Ae +ESlit -DB_ENDIAN -DBN_DIV2W -DMD32_XARRAY -c tmdiff.c cc: warning 422: Unknown option f ignored. cc -I. -I../include -DDSO_DL -fPIC -D_REENTRANT +O3 +Optrs_strongly_typed +Olibcalls -Ae +ESlit -DB_ENDIAN -DBN_DIV2W -DMD32_XARRAY -c cpt_err.c cc: warning 422: Unknown option f ignored. cc -I. -I../include -DDSO_DL -fPIC -D_REENTRANT +O3 +Optrs_strongly_typed +Olibcalls -Ae +ESlit -DB_ENDIAN -DBN_DIV2W -DMD32_XARRAY -c ebcdic.c cc: warning 422: Unknown option f ignored. cc -I. -I../include -DDSO_DL -fPIC -D_REENTRANT +O3 +Optrs_strongly_typed +Olibcalls -Ae +ESlit -DB_ENDIAN -DBN_DIV2W -DMD32_XARRAY -c uid.c cc: warning 422: Unknown option f ignored. ar r ../libcrypto.a cryptlib.o mem.o mem_dbg.o cversion.o ex_data.o tmdiff.o cpt_err.o ebcdic.o uid.o ar: No such file or directory ar: could not open cryptlib.o ar: No such file or directory ar: could not open mem.o ar: No such file or directory ar: could not open mem_dbg.o ar: No such file or directory ar: could not open cversion.o ar: No such file or directory ar: could not open ex_data.o ar: No such file or directory ar: could not open tmdiff.o ar: No such file or directory ar: could not open cpt_err.o ar: No such file or directory ar: could not open ebcdic.o ar: No such file or directory ar: could not open uid.o *** Error exit code 9 Stop. *** Error exit code 1 Stop. Thanks, Steve __ OpenSSL Project http://www.openssl.org User Support Mailing List[EMAIL PROTECTED] Automated List Manager [EMAIL PROTECTED] __ OpenSSL Project http://www.openssl.org User Support Mailing List[EMAIL PROTECTED] Automated List Manager [EMAIL PROTECTED]
asn1 - der question
Hi all, can me someone explain, how is encoded e.g. OCTET_STRING whit UNKNOWN length into DER code? Especially if data in octed_string contain 0x00 0x00. thanks Martin __ OpenSSL Project http://www.openssl.org User Support Mailing List[EMAIL PROTECTED] Automated List Manager [EMAIL PROTECTED]
RE: obtaining OID strings for DN components from a request?
Hi, I must have an old version of OpenSSL. In fact, I was looking for a function with a name similar to what you pointed out. I had found a function called OBJ_txt2nid(), so I figured there would be a OBJ_nid2txt() function or something similar. I looked in objects.h under crypto/objects directory. Is that where it's supposed to be? I'm missing that function. Thanks for your help, though. I really appreciate it. Peter K. -Original Message- From: Dr S N Henson [mailto:[EMAIL PROTECTED]] Sent: Monday, July 23, 2001 3:03 PM To: [EMAIL PROTECTED] Subject: Re: obtaining OID strings for DN components from a request? Kim, Peter wrote: Is there a way to get the OID strings corresponding to subject DN components (one at a time) from an X509_REQ object? I can only get NID, not OID, right now. I need the OID (xx.xx.xx.xx, etc.) string. Yes, OBJ_obj2txt(). This takes an ASN1_OBJECT structure: the last parameter (called 'no_name' in the headers) if set to 1 will always return the numberical OID even if it has a short or long name. If you have a NID then you can convert to an ASN1_OBJECT using OBJ_nid2obj() first. Steve. -- Dr Stephen N. Henson. http://www.drh-consultancy.demon.co.uk/ Personal Email: [EMAIL PROTECTED] Senior crypto engineer, Celo Communications: http://www.celocom.com/ Core developer of the OpenSSL project: http://www.openssl.org/ Business Email: [EMAIL PROTECTED] PGP key: via homepage. __ OpenSSL Project http://www.openssl.org User Support Mailing List[EMAIL PROTECTED] Automated List Manager [EMAIL PROTECTED] __ OpenSSL Project http://www.openssl.org User Support Mailing List[EMAIL PROTECTED] Automated List Manager [EMAIL PROTECTED]
EVP initialization question
Hi there, Sorry if this has been covered before... I'm working on some software that needs to encrypt messages between two parties. I'm using OpenSSL's EVP functions, and I'm wondering if I need to use EVP_Encrypt/DecryptInit and EVP_CIPHER_CTX_cleanup for each message that I encrypt. I guess I'm unclear about whether a context is something that's applicable to an entire session or simply to one message. I tried it the former way, but when I went to encrypt the second message, it included a part of the first message that it had encrypted, which leads me to believe that I should be cleaning that up and reinitalizing. Anyway, thanks for any help... Haig __ OpenSSL Project http://www.openssl.org User Support Mailing List[EMAIL PROTECTED] Automated List Manager [EMAIL PROTECTED]
Re: asn1 - der question
Hi all, can me someone explain, how is encoded e.g. OCTET_STRING whit UNKNOWN length into DER code? Especially if data in octed_string contain 0x00 0x00. You cannot encode an OCTET STRING with unknown length in DER. You must use the definite length forms. In BER you can encode an OCTET STRING using the indefinite length form as follows: 0x24 -- (Tag value for a constructed OCTET STRING from memory) 0x80 -- Indefinite length Then one or more encoded OCTET STRINGs containing the components of the value, these may be primitve or constructed. Lastly, the end-of-contents Octets 0x00 0x00. Note that you can think of the end-of-contents octets as a new tag and length. The OCTET STRING is then formed by the concatenation of all the other encoded values. Having 0x00 0x00 in the data part of the OCTET STRING doesn't matter as this sequence is only significant when you are attempting to decode the next tag. Hope this helps. -- Dean Povey, | e-m: [EMAIL PROTECTED] | JCSI: Java Crypto Toolkit Research Scientist | ph: +61 7 3864 5120 | uPKI: C PKI toolkit for embedded Security Unit, DSTC | fax: +61 7 3864 1282 | systems Brisbane, Australia | www: security.dstc.com | __ OpenSSL Project http://www.openssl.org User Support Mailing List[EMAIL PROTECTED] Automated List Manager [EMAIL PROTECTED]
Re: Darwin builds
Did that, patched and ran with the following results: [agmacosx:~/openssl-0.9.6b] root# ./Configure rhapsody-ppc-cc shared Configuring for rhapsody-ppc-cc IsWindows=0 CC=cc CFLAG =-O3 -DB_ENDIAN -DUSE_TOD -DPEDANTIC EX_LIBS = BN_ASM=bn_asm.o DES_ENC =des_enc.o fcrypt_b.o BF_ENC=bf_enc.o CAST_ENC =c_enc.o RC4_ENC =rc4_enc.o RC5_ENC =rc5_enc.o MD5_OBJ_ASM = SHA1_OBJ_ASM = RMD160_OBJ_ASM= PROCESSOR = RANLIB=/usr/bin/ranlib PERL =/usr/bin/perl THIRTY_TWO_BIT mode DES_UNROLL used BN_LLONG mode RC4 uses uchar RC4_CHUNK is unsigned long BF_PTR used Makefile.ssl:368: *** commands commence before first target. Stop. same as a while back -- Marko Asplund wrote: On Mon, 23 Jul 2001, hunter wrote: no i have not, i took a previous suggestion and moved the libcryto amd libssl out of /usr/lib but now i get: cc -o openssl -DMONOLITH -I../include -O3 -DB_ENDIAN openssl.o verify.o asn1pars.o req.o dgst.o dh.o dhparam.o enc.o passwd.o gendh.o errstr.o ca.o pkcs7.o crl2p7.o crl.o rsa.o rsautl.o dsa.o dsaparam.o x509.o genrsa.o gendsa.o s_server.o s_client.o speed.o s_time.o apps.o s_cb.o s_socket.o app_rand.o version.o sess_id.o ciphers.o nseq.o pkcs12.o pkcs8.o spkac.o smime.o rand.o -L.. -lssl -L.. -lcrypto /usr/bin/ld: Undefined symbols: _ftime make[1]: *** [openssl] Error 1 make: *** [sub_all] Error 1 Is there something like ldconfig i need or can run that will correct this? And do you have any other ideas? this should only appear if the sources were compiled without -DUSE_TOD. the patch you've applied should add this. maybe your source tree hasn't been properly cleaned after the initial Configure. please, try and delete your whole OpenSSL source tree, untar it again, apply the patch and run the following commands: ./Configure rhapsody-ppc-cc shared make best regards, -- aspa __ OpenSSL Project http://www.openssl.org User Support Mailing List[EMAIL PROTECTED] Automated List Manager [EMAIL PROTECTED] -- Michael B. Weiner, Linux+, Linux+ SME Systems Administrator/Partner The UserFriendly Network (UFN) -- Linux Registered User #94900Have you been counted? http://counter.li.org PGP: 30 1D CC BA 30 30 63 35 CD 58 E0 89 A9 17 CC C0 8C 55 F7 72 .Escape the 'Gates' of Hell `:::' ... .. ::: * `::.::' ::: .:: .:.::. .:: .:: `::. :' ::: :: :: :: :: :::::. ::: .::. .:: ::. `. .:' ::. ...:::.::' ... -- __ OpenSSL Project http://www.openssl.org User Support Mailing List[EMAIL PROTECTED] Automated List Manager [EMAIL PROTECTED]
Re: Missing symbol _llasgremu (Apache 1.3.20/mod_ssl-2.8.4/openssl-0.9.6b]
I have tried variations of the compiler (all of which have worked previously on earlier versions). I have to assume there is something irregular about this one module. I have even gone so far as to completely remove the directories for apache, openssl, mm and mod_ssl, and freshly downloading the compressed distributions. If I knew where this ll reference was triggered and what it did, but I really haven't a clue. Its the only complaint and it then arises only at a startssl command. None of the other configs/builds have any complaints. So its either regress backward 6 months or so and get a known combo or, perhaps, build as a static rather than a dynamic/shared ... But T do want to thank you for your suggestion, Boyd. Boyd Lynn Gerber [EMAIL PROTECTED] wrote: If you are using a SCO OS the problem is LD is set to /usr/bin/ld and needs to be changed to $CC or $CXX depending on wheter your using C++. edit the make files or do a make distclean and Configure with LD=$CC ./configure... Good Luck, -- Boyd Gerber [EMAIL PROTECTED] ZENEZ 3748 Valley Forge Road, Magna Utah 84044 Office 801-250-0795 FAX 801-250-7975 -- George Walsh, Managing Director, Travel Seewise Pacific Corp Vancouver Canada __ Your favorite stores, helpful shopping tools and great gift ideas. Experience the convenience of buying online with Shop@Netscape! http://shopnow.netscape.com/ Get your own FREE, personal Netscape Mail account today at http://webmail.netscape.com/ __ OpenSSL Project http://www.openssl.org User Support Mailing List[EMAIL PROTECTED] Automated List Manager [EMAIL PROTECTED]
Re: Darwin builds
On Mon, 23 Jul 2001, hunter wrote: ... [agmacosx:~/openssl-0.9.6b] root# ./Configure rhapsody-ppc-cc shared Configuring for rhapsody-ppc-cc IsWindows=0 CC=cc CFLAG =-O3 -DB_ENDIAN -DUSE_TOD -DPEDANTIC EX_LIBS = BN_ASM=bn_asm.o DES_ENC =des_enc.o fcrypt_b.o BF_ENC=bf_enc.o CAST_ENC =c_enc.o RC4_ENC =rc4_enc.o RC5_ENC =rc5_enc.o MD5_OBJ_ASM = SHA1_OBJ_ASM = RMD160_OBJ_ASM= PROCESSOR = RANLIB=/usr/bin/ranlib PERL =/usr/bin/perl THIRTY_TWO_BIT mode DES_UNROLL used BN_LLONG mode RC4 uses uchar RC4_CHUNK is unsigned long BF_PTR used Makefile.ssl:368: *** commands commence before first target. Stop. ... i'm attaching my Makefile.ssl (patched) and a typescript of my configuration process to this email. could you please diff the Makefile.ssl against your patched version. also, you could check that the typescript corresponds to your configuration steps. are you running Configure as root? try running as a regular user. what does 'patch --version', 'make --version' and 'uname -a' say? best regards, -- aspa openssl-macosx-conf.tgz
RE: Problems with OpenSSL and C++
Hi Craig, check your Project settings: C/C++ -- Category=Code Generation -- Multithreaded -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]On Behalf Of Brown, Craig Sent: Monday, July 23, 2001 10:12 PM To: '[EMAIL PROTECTED]' Subject: Problems with OpenSSL and C++ I'm trying to use OpenSSL with C++ (running under Windows NT). All the BIO calls seem to generate an exception. The exact same code works fine when being called from a C program. I looked in the bio.h file and the statement #ifdef __cplusplus Should guarantee that there are no c++-C problems. Is there anything else that I should be doing? Do any of you use OpenSSL with C++ under Windows NT? Thanks! Craig __ OpenSSL Project http://www.openssl.org User Support Mailing List[EMAIL PROTECTED] Automated List Manager [EMAIL PROTECTED] __ OpenSSL Project http://www.openssl.org User Support Mailing List[EMAIL PROTECTED] Automated List Manager [EMAIL PROTECTED]