Re: Reporting an Issue with OpenSSL in MacOS SDK 10.8

2014-07-22 Thread Viktor Dukhovni
On Tue, Jul 22, 2014 at 09:37:13AM -0400, Massimiliano Pala wrote: > working on porting my libpki implementation (based on OpenSSL) to MacOS I > found out an issue that is not really related to the code itself but the > distributed version in the SDK. Apple ships OpenSSL 0.9.8. > In particular,

[openssl.org #3467] FW: Critical vulnerabilities found (#8083-432678597-2590)

2014-07-22 Thread Matt Caswell via RT
If you originally obtained your copy of OpenSSL in binary form (such as from your OS vendor), then please get hold of the latest copy from them. If you originally obtained your copy of OpenSSL in source form then you will need to build a new version from the latest release on the OpenSSL website.

RE: [openssl.org #3467] FW: Critical vulnerabilities found (#8083-432678597-2590)

2014-07-22 Thread Salz, Rich
Where did you get your SSL package? Did it come with the OS? If so, then ask them for an update. If not, then where did you get it? Contact them. If you built it internally, you'll have to learn or buy expertise. -- Principal Security Engineer, Akamai Technologies, Cambridge, MA IM: rs...@jab

[openssl.org #3470] [BUG] DTLS abort

2014-07-22 Thread Brian Hassink via RT
OpenSSL: 1.0.1e OS: Red Hat Enterprise Linux Server release 6.5 (Santiago) Hello, We recently did some negative testing against OpenSSL 1.0.1e, with a focus on DTLS, and observed that the library, running on the peer, could be made to abort by simply

Reporting an Issue with OpenSSL in MacOS SDK 10.8

2014-07-22 Thread Massimiliano Pala
Hi all, working on porting my LibPKI implementation (based on OpenSSL) to MacOS I found out an issue that is not really related to the code itself but the distributed version in the SDK. In particular, I found out that several functions' signatures have been altered in their return codes. Th

Reporting an Issue with OpenSSL in MacOS SDK 10.8

2014-07-22 Thread Massimiliano Pala
Hi all, working on porting my libpki implementation (based on OpenSSL) to MacOS I found out an issue that is not really related to the code itself but the distributed version in the SDK. In particular, I found out that several functions' signatures have been altered in their return codes. Th

Reporting an Issue with OpenSSL in MacOS SDK 10.8

2014-07-22 Thread Massimiliano Pala
Hi all, working on porting my libpki implementation (based on OpenSSL) to MacOS I found out an issue that is not really related to the code itself but the distributed version in the SDK. In particular, I found out that several functions' signatures have been altered in their return codes. Th

Open SSL version with FIPS Certified code and TLS 1.2 Support

2014-07-22 Thread Arun Kumar
Hi, We are currently using below version: openssl-fips-1.2.tar.gz We need to upgrade to OPENSSL Version with FIPS certification and It should support TLS 1.2. Please recommend us the Version which we can use. it is little urgent and I a

RE: [openssl.org #3467] FW: Critical vulnerabilities found (#8083-432678597-2590)

2014-07-22 Thread Venkata Golla
Dear, We have already contacted with OS vendor (Oracle Linux) and Symantec (SSL certificate vendor). They both said, it is out of their scope. And we tried to install by following README; unfortunately it's not working. Who can assist us on this, Thanks. Venkata Golla Oracle Applications DBA

Re: [openssl.org #3469] problem with commit 3009244da47b989c4cc59ba02cf81a4e9d8f8431 - global_mask needs to be more liberal

2014-07-22 Thread Stefanos Harhalakis
Hi, On Monday 21 July 2014 21:25:55 Kurt Roeckx via RT wrote: > On Mon, Jul 21, 2014 at 08:29:47PM +0200, Stefanos Harhalakis via RT wrote: > > Hi there, > > > > Commit 3009244da47b989c4cc59ba02cf81a4e9d8f8431 changed the global_mask to > > B_ASN1_UTF8STRING (see bellow). > > > > The mask is use

OpenSSL version 1.0.2 beta 2 released

2014-07-22 Thread OpenSSL
-BEGIN PGP SIGNED MESSAGE- Hash: SHA1 OpenSSL version 1.0.2 beta 2 = OpenSSL - The Open Source toolkit for SSL/TLS http://www.openssl.org/ OpenSSL 1.0.2 is currently in beta. OpenSSL 1.0.2 beta 2 has now been released. For details of changes

[PATCH] for openssl master snap of 20140721 for W32/WCE platforms, to fix cast+typing issues, types coding rules suggested

2014-07-22 Thread Pierre DELAAGE
Dear All, Compiling master 20140721 both for w32 (with VC++ 9.0 express) and WCE/ARMv4 target (with EVC4sp4 compiler + WCE 420 SDK), I found those two cast issues : 1/ crypto/bn/bn_nist.c, function BN_nist_mod_func(...) clarm.exe /Fotmp32dll_ARMV4\bn_nist.obj -Iinc32 -Itmp32dll_ARMV4 /O1i /

Re: [PATCH or big HINT] libeay.num and ssleay.num changes needed in 1.0.2 and master

2014-07-22 Thread Pierre DELAAGE
Dear all, Same kind of problem for Win32 target and VC9.0 express compiler, with MASTER of 2014/07/21 version of sources. IF EXIST out32dll\casttest.exe.manifest mt -nologo -manifest out32dll\ca sttest.exe.manifest -outputresource:out32dll\casttest.exe;1 link /nologo /subsystem

RE: [openssl.org #3467] FW: Critical vulnerabilities found (#8083-432678597-2590)

2014-07-22 Thread Venkata Golla via RT
Dear, We have already contacted with OS vendor (Oracle Linux) and Symantec (SSL certificate vendor). They both said, it is out of their scope. And we tried to install by following README; unfortunately it's not working. Who can assist us on this, Thanks. Venkata Golla Oracle Applications DBA