Re: [openssl.org #1850] AutoReply: Bug Report--openssl crashes at SSL_write()

Hi, Request for an Update on this issue. Request for a high priority check on the same. Will provide additional information if needed. Thanks & Regards, BhanuPrakash.T "The default

RE: [openssl.org #1850] AutoReply: Bug Report--openssl crashes at SSL_write()

> Hi, > Request for an Update on this issue. Request for a high priority check on > the same. Will provide additional information if needed. You could start with: 1) The code around the line of code in SSL_write that fails. 2) Identifying the exact line in SSL_write that fails. 3) The content

Re: help in edsa functions

I resolved my previous problem, the error came in the name of the variable "key" which has to be named "eckey". So there is a mistake in the code in the documentation. Now my problem is more difficult, because after : Initialization of the structure : EC_KEY*eckey = EC_KEY_new() link with an

RAND_poll() and CreateToolhelp32Snapshot() stability

Hi, We've been observing in our application several crashes on Windows related to RAND_poll(). We've been working on this issue for 3 days now, and came up with a possible explanation and fix. Bare with me on this rather lengthy email, as I'll try to document as best I can everything we've done

CVE-2009-0653

Can some comment on this: http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-0653 Is this still a problem in 0.9.8 versions? Kurt __ OpenSSL Project http://www.openssl.org Development Mailing

Re: [openssl.org #1851] [PATCH] "openssl verify -CAfile mutil_ca.pem site.cert" fails even if mutil_ca.pem contains the chain for site.cert

Hi, Steve Thanks for quick response. Since the function (X509_NAME_cmp) is used for sort and bsearh, we'd better make sure the return value is consistent. say a>b and b>c, then a>c is always expected. My previous patch has a clear logic to guarantee this but I am not sure if the fix in current sna

Re: CVE-2009-0653

On Mon, Mar 02, 2009, Kurt Roeckx wrote: > Can some comment on this: > http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-0653 > > Is this still a problem in 0.9.8 versions? > It was addressed in OpenSSL 0.9.5. Steve. -- Dr Stephen N. Henson. Email, S/MIME and PGP keys: see homepage OpenSS

Re: CVE-2009-0653

On Mon, Mar 02, 2009 at 09:46:55PM +0100, Dr. Stephen Henson wrote: > On Mon, Mar 02, 2009, Kurt Roeckx wrote: > > > Can some comment on this: > > http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-0653 > > > > Is this still a problem in 0.9.8 versions? > > > > It was addressed in OpenSSL 0

Re: [openssl.org #1851] [PATCH] "openssl verify -CAfile mutil_ca.pem site.cert" fails even if mutil_ca.pem contains the chain for site.cert

I checked the CVS changelog, looks good :) Thanks again http://cvs.openssl.org/chngview?cn=17835 Jeff On Mon, Mar 2, 2009 at 11:17 AM, Jeff Wu wrote: > Hi, Steve > > Thanks for quick response. Since the function (X509_NAME_cmp) is used > for sort and bsearh, we'd better make sure the return val