When turning off various ciphers, OpenSSL doesn't always compile. The attached
patches fix various issues with OpenSSL when ciphers (particularly RSA or DSA)
are turned off. These patches were requested in the attached thread
__
Currently, OpenSSL doesn't check the return code of EVP_DigestFinal_ex() in
rsa_oaep.c. However, EVP_DigestFinal_ex can return an error, which leads to
confusion for the caller of RSA Oaep. This patch makes it so we return an error
code if something goes wrong. This compiles against 1.0.0d.
Like Sun, Apple's iOS does not provide a typedef for sig_atomic_t. This patch
adds a symbol for iOS support, and typedefs sig_atomic_t. It applies against
1.0.0d.
diff -ur ../openssl-1.0.0d/crypto/ui/ui_openssl.c src/crypto/ui/ui_openssl.c
--- ../openssl-1.0.0d/crypto/ui/ui_openssl.c 2009-10-04
On 04/11/2011 11:10 PM, Tim Jackson wrote:
Hi, I sent several patches to openssl-b...@openssl.org a few hours ago, but I
haven't seen them get forwarded to this list and don't see them at
http://rt.openssl.org/NoAuth/Buglist.html. Is this expected? Does
openssl-bugs still work, or do all
Have gotten posted, you will even wait more for the answers :-).
Trivial one-liner patches are on the list for more days. No worries,
that is the situation how it goes.
Best Regards,
Laszlo Papp
On Tue, Apr 12, 2011 at 12:10 AM, Tim Jackson
tim.jack...@citrixonline.com wrote:
Hi, I sent
Tim,
Seems that you miss to attach a file with actual patch...
On 12 April 2011 11:13, Tim Jackson via RT r...@openssl.org wrote:
When turning off various ciphers, OpenSSL doesn't always compile. The
attached patches fix various issues with OpenSSL when ciphers (particularly
RSA or DSA) are
Thanks. I simply expected an automated system to reply faster and didn't
want the patches to get lost. :-) Next time I'll allow 24 hours for
processing.
Tim
On 4/12/11 12:53 AM, Laszlo Papp djsz...@archlinux.us wrote:
Have gotten posted, you will even wait more for the answers :-).
Trivial
- Original Message -
From: Tim Jackson via RT r...@openssl.org
Cc: openssl-dev@openssl.org
Sent: Tuesday, April 12, 2011 9:13 AM
Subject: [openssl.org #2497] [PATCH] Improve RSAOaep Error Handling
Currently, OpenSSL doesn't check the return code of EVP_DigestFinal_ex()
in rsa_oaep.c.
Gilles,
Sorry about that. Here's the updated patch, with that extra variable
removed.
0 -0700
+++ rsa_oaep.c 2011-04-12 13:29:15.0 -0700
@@ -188,7 +188,7 @@
unsigned char cnt[4];
EVP_MD_CTX c;
unsigned char md[EVP_MAX_MD_SIZE];
- int mdlen;
+ int mdlen = 0;
Gilles,
Sorry about that. Here's the updated patch, with that extra variable
removed.
0 -0700
+++ rsa_oaep.c 2011-04-12 13:29:15.0 -0700
@@ -188,7 +188,7 @@
unsigned char cnt[4];
EVP_MD_CTX c;
unsigned char md[EVP_MAX_MD_SIZE];
- int mdlen;
+ int mdlen = 0;
Hello List,
new user here. Wondering if it's possible to do as I mention in the subject
of the email. I downloaded the source from the openssl site and compiled it
with the target being linux64-sparcv9 (or something) and was hoping that the
'Configure' script would take into account that it's a
11 matches
Mail list logo