[openssl.org #754] Downgrade to Lower Version

Not a defect. __ OpenSSL Project http://www.openssl.org Development Mailing List openssl-dev@openssl.org Automated List Manager majord...@openssl.org

[openssl.org #746] problems with installation of openssl

too little too late. __ OpenSSL Project http://www.openssl.org Development Mailing List openssl-dev@openssl.org Automated List Manager majord...@opens

[openssl.org #737] /dev/random

10 years old, old release, old operating system. if still an issue please re-open the tichet. __ OpenSSL Project http://www.openssl.org Development Mailing List openssl-dev@ope

[openssl.org #723] 0.9.7c IMAPD+TLS Interaction Bug

10 years old, can't reproduct, closing this. __ OpenSSL Project http://www.openssl.org Development Mailing List openssl-dev@openssl.org Automated List Manager

RE: [openssl.org #44] OpenSSL_add_all_algorithms problems in Win32

yes, today I would use that one. Back then, XP was required, an this function was only in Vista and Server 2008. Thanks for reminding me -:) >-- Original Message -- > >> From: owner-openssl-...@openssl.org [mailto:owner-openssl-...@openssl.org] >> On Behalf Of Erik Forsberg > >> What would be the

[openssl.org #718] wrong optimization on irix

old release, unofficizl platform, very old ticket. __ OpenSSL Project http://www.openssl.org Development Mailing List openssl-dev@openssl.org Automated List Manager

[openssl.org #701] [Patch] openssl support for iSeries (os/400)

old release unsupported platform __ OpenSSL Project http://www.openssl.org Development Mailing List openssl-dev@openssl.org Automated List Manager maj

[openssl.org #691] Bug Report - Sparc/NetBSD

Can't reproduce, last update 10 years ago. __ OpenSSL Project http://www.openssl.org Development Mailing List openssl-dev@openssl.org Automated List Manager

[openssl.org #690] compilation bug report

Compiler accepts -o and -c flags now ;) __ OpenSSL Project http://www.openssl.org Development Mailing List openssl-dev@openssl.org Automated List Manager

[openssl.org #686] How to upgrade

Hopefully figured out how to do the upgrade by now :) __ OpenSSL Project http://www.openssl.org Development Mailing List openssl-dev@openssl.org Automated List Manager

[openssl.org #642] WinCE IE 3.02 client problem

Old unsupported release, old platform, no update in a decade. __ OpenSSL Project http://www.openssl.org Development Mailing List openssl-dev@openssl.org Automated List Manager

[openssl.org #605] Re: Some Patches for OpenServer 5.0.X

The SCO folks? Who sued Linux users? Nahh :) __ OpenSSL Project http://www.openssl.org Development Mailing List openssl-dev@openssl.org Automated List Manager

[openssl.org #639] subscribtion to openssl-users or openssl-dev from virtual domain

Various alternatives, such as NABL, exist. __ OpenSSL Project http://www.openssl.org Development Mailing List openssl-dev@openssl.org Automated List Manager

[openssl.org #637] bug or error in openssl

Can't reproduce intermittent SSL failures and no update in years; closing this. __ OpenSSL Project http://www.openssl.org Development Mailing List openssl-dev@openssl.org Autom

RE: Website Contribution

The website is written using a tool called "wml." It would be great if someone wanted to make it more modern and properly use things like CSS. Then it might make sense to put it into a github repository. Want to volunteer? -- Principal Security Engineer Akamai Technologies, Cambridge, MA IM

[openssl.org #579] Fw: Problem compiling tests for openssl-0.9.7b

old release, unusual platform that puts rm in /usr/local/bin. __ OpenSSL Project http://www.openssl.org Development Mailing List openssl-dev@openssl.org Automated List Manager

[openssl.org #527] openssl-0.9.7a under Solaris needs -lxnet -lnsl

Old release, old platform. Assume things work okay now :) __ OpenSSL Project http://www.openssl.org Development Mailing List openssl-dev@openssl.org Automated List Manager

[openssl.org #577] Re: Compilation failed [OpenBSD-3.2-current]

Old release, old platform. __ OpenSSL Project http://www.openssl.org Development Mailing List openssl-dev@openssl.org Automated List Manager majord...

[openssl.org #175] openssl-0.9.6e bug under Irix 6.5?

Unsupported old release and old platform, closing this. __ OpenSSL Project http://www.openssl.org Development Mailing List openssl-dev@openssl.org Automated List Manager

[openssl.org #583] [PATCH] support for the ISIS-MTT 'restriction' extension

Thanks. Not taken, but please re-open the RT if this is still an issue. __ OpenSSL Project http://www.openssl.org Development Mailing List openssl-dev@openssl.org Automated Lis

[openssl.org #575] 0.9.7a with patches and >

Very very old release, no update in ten years. I hope it's working now :) __ OpenSSL Project http://www.openssl.org Development Mailing List openssl-dev@openssl.org Automated L

[openssl.org #572] 0.9.6i and OS X (10.2)

Old release and operating system with no update in years and years. __ OpenSSL Project http://www.openssl.org Development Mailing List openssl-dev@openssl.org Automated List Ma

[openssl.org #561] bug report

OPENSSL cleanup routines not being called. __ OpenSSL Project http://www.openssl.org Development Mailing List openssl-dev@openssl.org Automated List Manager

[openssl.org #569] OpenSSL reduced size - suppress PKCS #12 code generation

Not a project goal, but still neat work. __ OpenSSL Project http://www.openssl.org Development Mailing List openssl-dev@openssl.org Automated List Manager

[openssl.org #479] support version independent upgrade

No update in nine years, closing this. __ OpenSSL Project http://www.openssl.org Development Mailing List openssl-dev@openssl.org Automated List Manager

[openssl.org #229] [PATCH] Supply missing prototypes for OpenSSL 0.9.6g

Looks like only app_verify_callback in ssl_st is missing a prototype. __ OpenSSL Project http://www.openssl.org Development Mailing List openssl-dev@openssl.org Automated List

[openssl.org #568] [PATCH] some ISIS-MTT OIDs

We can't take all OID's. Are these widely used, especially in the x.509 and ssl/tls areas? If so, please re-open this ticket. __ OpenSSL Project http://www.openssl.org Development Mailing List

Re: Website Contribution

On 21/06/2014 9:20 AM, Michael "Croydon" K. wrote: I would like to see the git website repository also on Github. Exactly like it's done with the openssl library. I would likely going to contribute some improvements since I'm thinking the website needs that more than urgent. Do you have spec

Re: SSLv2 & SSLv3

On Sat, Jun 28, 2014, Jeremy Farrell wrote: > > From: Hanno Böck [mailto:ha...@hboeck.de] > > Sent: Saturday, June 28, 2014 10:36 PM > > > > On Sat, 28 Jun 2014 20:05:21 +0200 > > Kurt Roeckx wrote: > > > > > If you make such a patch, I might disable SSLv3 support in Debian, > > > but that's un

[openssl.org #543] Valid trick to reduce session object's size?

Ten years old, and nobody else seems to be interested. So, as the last line says, "oink oink flap flap" when pigs fly pile. :) __ OpenSSL Project http://www.openssl.org Development Mailing List

[openssl.org #576] wtls certificate

WTLS isn't supported. Phones do full TLS now :) __ OpenSSL Project http://www.openssl.org Development Mailing List openssl-dev@openssl.org Automated List Manager

[openssl.org #451] SX6 port

Old, unsupported release. Old, unsupported operating system. :) __ OpenSSL Project http://www.openssl.org Development Mailing List openssl-dev@openssl.org Automated List Manage

RE: SSLv2 & SSLv3

> From: Hanno Böck [mailto:ha...@hboeck.de] > Sent: Saturday, June 28, 2014 10:36 PM > > On Sat, 28 Jun 2014 20:05:21 +0200 > Kurt Roeckx wrote: > > > If you make such a patch, I might disable SSLv3 support in Debian, > > but that's unlikely to make it in jessie. > > The openssl configure scrip

[openssl.org #3089] Building OpenSSL 1.0.1e with FIPS on Win64A

On Wed Jul 10 21:46:50 2013, graeme.per...@gmail.com wrote: > I am trying to build the FIPS Object Module for Windows on an AMD64 > machine. I started with the instructions in section 4.3 of the User Guide > 2.0, and was able to build the FIPS module itself, but the instructions for > building a FI

[openssl.org #3184] Update documentation of SSLv23_method()

Documents updated now. Steve. -- Dr Stephen N. Henson. OpenSSL project core developer. Commercial tech support now available see: http://www.openssl.org __ OpenSSL Project http://www.openssl.org De

[openssl.org #2746] Bugfix for ASN.1 parser in OpenSSL 0.9.8 and 1.0

I've added support for leading zeroes in the ASN1 length octets which will also address this bug. For now it's only in the master branch. Steve. -- Dr Stephen N. Henson. OpenSSL project core developer. Commercial tech support now available see: http://www.openssl.org _

[openssl.org #3272] [PATCH] Correct copy for AES gcm cipher

On Sun Mar 02 11:24:55 2014, mej...@gmail.com wrote: > One can duplicate the entire EVP_CIPHER_CTX with a call to > EVP_CIPHER_CTX_copy. > By default the state (cipher_data) is duplicated bytewize (malloc+memcpy). > Since AES > gcm has pointers in its state this naive copy method leads to crashes.

[openssl.org #435] ssl proxy, core dump in certificate validation when acting as a client

Nine years old, not reproducible, and 0.9,6 is pushing up daisies :) __ OpenSSL Project http://www.openssl.org Development Mailing List openssl-dev@openssl.org Automated List M

[openssl.org #397] "ld: Undefined symbols: _OPENSSL_cleanse" OS X 10.2.2

User error. __ OpenSSL Project http://www.openssl.org Development Mailing List openssl-dev@openssl.org Automated List Manager majord...@openssl.org

[openssl.org #249] 'openssl verify' broken

We'll assume that the config and cert chain issues were finally worked out over the past several years... If not, please re-open __ OpenSSL Project http://www.openssl.org Development Mailing List

[openssl.org #3223] Cipher DHE-DSS-DES-CBC3-SHA does not exists

On Fri Jan 10 09:53:26 2014, stefano.cata...@gmail.com wrote: > Hello, sorry for my poor english, i installed both 1.0.1e and 1.0.1f > version of openssl but in both versions the cipher > TLS_DHE_DSS_WITH_3DES_EDE_CBC_SHA > does not exists. > > I found only EDH-DSS-DES-CBC3-SHA so connections with

[openssl.org #144] declaration bug between openssl.c / apps.c

Non monolith builds of the openssl app aren't a goal. Please create a new RT if still an important issue. __ OpenSSL Project http://www.openssl.org Development Mailing List ope

[openssl.org #116] Code Submission to OpenSSL: A Few Number Theory Functions

Original submitter never moved forward, and as Bodo said we already have several of these. Please submit a git pull request if still relevant. __ OpenSSL Project http://www.openssl.org Development M

[openssl.org #116] Code Submission to OpenSSL: A Few Number Theory Functions

Original submitter never moved forward, and as Bodo said we already have several of these. Please submit a git pull request if still relevant. __ OpenSSL Project http://www.openssl.org Development M

RE: SSLv2 & SSLv3

I have no problem disabling it by default and think that should have been done awhile ago, actually. -- Principal Security Engineer Akamai Technologies, Cambridge, MA IM: rs...@jabber.me; Twitter: RichSalz

RE: SSLv2 & SSLv3

We need to support embedded clients that only speak SSL2 :( -- Principal Security Engineer Akamai Technologies, Cambridge, MA IM: rs...@jabber.me; Twitter: RichSalz __ OpenSSL Project http://www.

RE: [openssl.org #44] OpenSSL_add_all_algorithms problems in Win32

> From: owner-openssl-...@openssl.org [mailto:owner-openssl-...@openssl.org] On > Behalf Of Erik Forsberg > What would be the best "equivalent" yo pthread_once on Windows ? > I was once looking for one, and back then, years ago, I didnt like the > choices. Perhaps http://msdn.microsoft.com/en-u

RE: [openssl.org #44] OpenSSL_add_all_algorithms problems in Win32

> From: owner-openssl-...@openssl.org [mailto:owner-openssl-...@openssl.org] On > Behalf Of Erik Forsberg > What would be the best "equivalent" yo pthread_once on Windows ? > I was once looking for one, and back then, years ago, I didnt like the > choices. Perhaps http://msdn.microsoft.com/en-u

Re: SSLv2 & SSLv3

On Sat, 28 Jun 2014 20:05:21 +0200 Kurt Roeckx wrote: > If you make such a patch, I might disable SSLv3 support in Debian, > but that's unlikely to make it in jessie. The openssl configure script already has a disable-ssl3 option. I experimented with it a while back and it didn't have any impac

[openssl.org #3344] PATCH: don't crash or fail in ASN1_print from t_pkey.c

Not had any further feedback on this issue, so setting this to stalled. Matt __ OpenSSL Project http://www.openssl.org Development Mailing List openssl-dev@openssl.org Automa

Re: [openssl.org #3413] OpenSSL Bug Report Submission - related to #3376

On Sat, Jun 28, 2014 at 05:21:40PM +0200, Clemmer, John J CIV via RT wrote: > OpenSSL Development Team, > > My attempts to compile OpenSSL v.1.0.0m on the day of its release as well as > last night both resulted in the same error, whereby INT_MAX is used before it > is declared in ssl/s3_pkt.c o

Re: SSLv2 & SSLv3

On Sat, Jun 28, 2014 at 06:34:01PM +0100, Dominyk Tiller wrote: > Hey all, > > I wondered if you all had an opinion on disabling SSLv2 & SSLv3 during > the ./configure process, and what kind of impact that'd have for > end-users and general compatibility when building against an updated > version

[openssl.org #3413] OpenSSL Bug Report Submission - related to #3376

On Sat Jun 28 17:21:39 2014, john.j.clemmer4@mail.mil wrote: > OpenSSL Development Team, > > My attempts to compile OpenSSL v.1.0.0m on the day of its release as > well as last night both resulted in the same error, whereby INT_MAX > is used before it is declared in ssl/s3_pkt.c on line 586. >

Re: [openssl.org #44] OpenSSL_add_all_algorithms problems in Win32

What would be the best "equivalent" yo pthread_once on Windows ? I was once looking for one, and back then, years ago, I didnt like the choices. >-- Original Message -- > >I think the thing to do is pthread_once (and its equivalent on Windows) for >these global init functions. >___

SSLv2 & SSLv3

-BEGIN PGP SIGNED MESSAGE- Hash: SHA512 Hey all, I wondered if you all had an opinion on disabling SSLv2 & SSLv3 during the ./configure process, and what kind of impact that'd have for end-users and general compatibility when building against an updated version of OpenSSL. It's a discuss

[openssl.org #3413] OpenSSL Bug Report Submission - related to #3376

OpenSSL Development Team, My attempts to compile OpenSSL v.1.0.0m on the day of its release as well as last night both resulted in the same error, whereby INT_MAX is used before it is declared in ssl/s3_pkt.c on line 586. Researching this error, I found a discussion among some of your developer

[openssl.org #25] [patch] SSL.cert_store

As a US Person I forwarded this to cr...@bxa.doc.gov so perhaps this can be unstalled now. __ OpenSSL Project http://www.openssl.org Development Mailing List openssl-dev@openssl

[openssl.org #1191] [PATCH] Pre-Shared Key Ciphersuites for OpenSSL

PSK support has been included for awhile now. __ OpenSSL Project http://www.openssl.org Development Mailing List openssl-dev@openssl.org Automated List Manager

[openssl.org #1233] Invalid makefile created on Win32 using mk1mf.pl

This had been fixed, just not marked RT issue resolved. __ OpenSSL Project http://www.openssl.org Development Mailing List openssl-dev@openssl.org Automated List Manager

[openssl.org #857] Pocket PC (MIPS) missing IO fns

Release and OS version too old; closing this. __ OpenSSL Project http://www.openssl.org Development Mailing List openssl-dev@openssl.org Automated List Manager

[openssl.org #645] openssl make error

Time heals all builds :) __ OpenSSL Project http://www.openssl.org Development Mailing List openssl-dev@openssl.org Automated List Manager majord...@op

[openssl.org #388] Building beta 5 on solaris 8 sparcv9

The defect was fixed, and buildling multiple library types out of one tree is not a goal. Marking this resolved. __ OpenSSL Project http://www.openssl.org Development Mailing List

[openssl.org #328] DH_compute_key incompatable with PKCS #3

No further reaction ten years later, I'm resolving this. __ OpenSSL Project http://www.openssl.org Development Mailing List openssl-dev@openssl.org Automated List Manager

[openssl.org #447] [Fwd: Bug#176058: openssl: Should ask password only after basic input validation]

On the other hand, there is something to be said for consistent behavior. __ OpenSSL Project http://www.openssl.org Development Mailing List openssl-dev@openssl.org Automated Li

[openssl.org #44] OpenSSL_add_all_algorithms problems in Win32

I think the thing to do is pthread_once (and its equivalent on Windows) for these global init functions. __ OpenSSL Project http://www.openssl.org Development Mailing List opens

[openssl.org #607] make error

If the timestamps were in the future then clearly, 12 years later, they aren't any more. Please re-open if this is still an issue. __ OpenSSL Project http://www.openssl.org Development Mailing List

[openssl.org #22] [PATCH] to dev build 20020428 for Win64 on Itanium

Current releases are much better about 64bit issues, including int/size_t. Please open a new RT if there are any remaining problems __ OpenSSL Project http://www.openssl.org Development Mailing List

Re: [openssl.org #3336] 1.0.1g breaks IronPORT SMTP appliance (padding extension)

On our mail system we have 18 different remote systems that TLS fails with in the last 24 hours. I assume they are using ironport since they are the kind of domains that would use cisco gear such as utah.edu or dell.com, but it's hard to tell since it is a security device and doesn't announce what

[openssl.org #25] [patch] SSL.cert_store

OpenSSL 1.0.2 supports per SSL certificate stores so this patch is redundant. See SSL_set1_verify_cert_store et al Steve. -- Dr Stephen N. Henson. OpenSSL project core developer. Commercial tech support now available see: http://www.openssl.org

[openssl.org #2746] Bugfix for ASN.1 parser in OpenSSL 0.9.8 and 1.0

On Sat Jun 28 05:53:36 2014, rsalz wrote: > As discussed, the "failed" encoding is BER, not DER, and we only do > DER. (And > if you know what that means, and the difference between the two, you > have my > sympathies.) Actually we *do* do BER in general for decoding and in a number of places enco

RE: please

อะไร งง? Date: Fri, 27 Jun 2014 21:59:42 -1000 Subject: please From: brudda@gmail.com To: openssl-dev@openssl.org tell me how to be done with your feed

please

tell me how to be done with your feed