Re: [openssl-dev] [openssl.org #3657] OpenSSL 1.0.1k DTLS handshake no longer works

The openssl s_server/s_client -dtls1 works I now suspect a special edge case of dtls1_get_record function. That buffer I'm feeding into OpenSSL is taken from Chrome WebRTC DTLS handshake, and as we saw, is perfectly valid in older OpenSSL versions. Still digging... > On Jan 14, 2015, at 22:21,

Re: [openssl-dev] [openssl.org #3657] OpenSSL 1.0.1k DTLS handshake no longer works

The openssl s_server/s_client -dtls1 works I now suspect a special edge case of dtls1_get_record function. That buffer I'm feeding into OpenSSL is taken from Chrome WebRTC DTLS handshake, and as we saw, is perfectly valid in older OpenSSL versions. Still digging... > On Jan 14, 2015, at 22:21,

Re: [openssl-dev] [openssl.org #3657] OpenSSL 1.0.1k DTLS handshake no longer works

Looks like dtls1_get_record is always returning -1 Still digging... > On Jan 15, 2015, at 00:01, Eugen-Andrei Gavriloaie wrote: > > >> On Jan 14, 2015, at 23:39, Viktor Dukhovni >> wrote: >> >> On Wed, Jan 14, 2015 at 11:31:02PM +0200, Eugen-Andrei Gavriloaie wrote: >> >>> Dynamic: >>> $

Re: [openssl-dev] [openssl.org #3657] OpenSSL 1.0.1k DTLS handshake no longer works

> On Jan 14, 2015, at 23:39, Viktor Dukhovni wrote: > > On Wed, Jan 14, 2015 at 11:31:02PM +0200, Eugen-Andrei Gavriloaie wrote: > >> Dynamic: >> $ ls -Al /tmp/ssl/lib/ >> total 11336 >> drwxr-xr-x 14 shiretu wheel 476 Jan 14 23:27 engines >> -r-xr-xr-x 1 shiretu wheel 1602352 Jan 14

Re: [openssl-dev] [openssl.org #3657] OpenSSL 1.0.1k DTLS handshake no longer works

> On Jan 14, 2015, at 23:39, Viktor Dukhovni wrote: > > On Wed, Jan 14, 2015 at 11:31:02PM +0200, Eugen-Andrei Gavriloaie wrote: > >> Dynamic: >> $ ls -Al /tmp/ssl/lib/ >> total 11336 >> drwxr-xr-x 14 shiretu wheel 476 Jan 14 23:27 engines >> -r-xr-xr-x 1 shiretu wheel 1602352 Jan 14

Re: [openssl-dev] [openssl.org #3657] OpenSSL 1.0.1k DTLS handshake no longer works

On Wed, Jan 14, 2015 at 11:31:02PM +0200, Eugen-Andrei Gavriloaie wrote: > Dynamic: > $ ls -Al /tmp/ssl/lib/ > total 11336 > drwxr-xr-x 14 shiretu wheel 476 Jan 14 23:27 engines > -r-xr-xr-x 1 shiretu wheel 1602352 Jan 14 23:27 libcrypto.1.0.0.dylib > -rw-r--r-- 1 shiretu wheel 3196

Re: [openssl-dev] [openssl.org #3657] OpenSSL 1.0.1k DTLS handshake no longer works

Dynamic: $ ls -Al /tmp/ssl/lib/ total 11336 drwxr-xr-x 14 shiretu wheel 476 Jan 14 23:27 engines -r-xr-xr-x 1 shiretu wheel 1602352 Jan 14 23:27 libcrypto.1.0.0.dylib -rw-r--r-- 1 shiretu wheel 3196880 Jan 14 23:27 libcrypto.a lrwxr-xr-x 1 shiretu wheel 21 Jan 14 23:27 libcr

Re: [openssl-dev] [openssl.org #3657] OpenSSL 1.0.1k DTLS handshake no longer works

On Wed, Jan 14, 2015 at 10:54:57PM +0200, Eugen-Andrei Gavriloaie wrote: > On my Mac OS X Yosemite, manually compiled OpenSSL 1.0.1k and installed it > into /tmp/ssl as a static lib (with shared lib behaves the same) Compiling: > > $ gcc dtls_bug.c -Wno-deprecated-declarations /tmp/ssl/lib/libssl

[openssl-dev] [openssl.org #3657] OpenSSL 1.0.1k DTLS handshake no longer works

On Wed Jan 14 21:55:17 2015, shir...@gmail.com wrote: > Hi Matt, > > Here are more explanations: > > On my Mac OS X Yosemite, the OS provided OpenSSL version > $ openssl version > OpenSSL 1.0.1j 15 Oct 2014 > > Compiling the test > $ gcc ~/Dropbox/Public/dtls_bug.c -Wno-deprecated-declarations -lss

Re: [openssl-dev] [openssl.org #3657] OpenSSL 1.0.1k DTLS handshake no longer works

And from an Ubuntu box (apparently, it runs 1.0.1f) shiretu@ubuntu:/tmp$ gcc -std=c99 dtls_bug.c -lssl -lcrypto -o dtls_bug shiretu@ubuntu:/tmp$ ./dtls_bug dtls_bug: dtls_bug.c:110: main: Assertion `pSSLBuffer->length != 0' failed. Aborted (core dumped) shiretu@ubuntu:/tmp$ uname -a Linux ubunt

Re: [openssl-dev] [openssl.org #3657] OpenSSL 1.0.1k DTLS handshake no longer works

And from an Ubuntu box (apparently, it runs 1.0.1f) shiretu@ubuntu:/tmp$ gcc -std=c99 dtls_bug.c -lssl -lcrypto -o dtls_bug shiretu@ubuntu:/tmp$ ./dtls_bug dtls_bug: dtls_bug.c:110: main: Assertion `pSSLBuffer->length != 0' failed. Aborted (core dumped) shiretu@ubuntu:/tmp$ uname -a Linux ubunt

Re: [openssl-dev] [openssl.org #3657] OpenSSL 1.0.1k DTLS handshake no longer works

Forgot to add the 1.0.1k version info: $ /tmp/ssl/bin/openssl version OpenSSL 1.0.1k 8 Jan 2015 > On Jan 14, 2015, at 22:54, Eugen-Andrei Gavriloaie wrote: > > Hi Matt, > > Here are more explanations: > > On my Mac OS X Yosemite, the OS provided OpenSSL version > $ openssl version > OpenSSL 1.

Re: [openssl-dev] [openssl.org #3657] OpenSSL 1.0.1k DTLS handshake no longer works

Forgot to add the 1.0.1k version info: $ /tmp/ssl/bin/openssl version OpenSSL 1.0.1k 8 Jan 2015 > On Jan 14, 2015, at 22:54, Eugen-Andrei Gavriloaie wrote: > > Hi Matt, > > Here are more explanations: > > On my Mac OS X Yosemite, the OS provided OpenSSL version > $ openssl version > OpenSSL 1.

Re: [openssl-dev] [openssl.org #3657] OpenSSL 1.0.1k DTLS handshake no longer works

Hi Matt, Here are more explanations: On my Mac OS X Yosemite, the OS provided OpenSSL version $ openssl version OpenSSL 1.0.1j 15 Oct 2014 Compiling the test $ gcc ~/Dropbox/Public/dtls_bug.c -Wno-deprecated-declarations -lssl -lcrypto -o /tmp/dtls_bug Running the test $ /tmp/dtls_bug $ As

Re: [openssl-dev] [openssl.org #3657] OpenSSL 1.0.1k DTLS handshake no longer works

Hi Matt, Here are more explanations: On my Mac OS X Yosemite, the OS provided OpenSSL version $ openssl version OpenSSL 1.0.1j 15 Oct 2014 Compiling the test $ gcc ~/Dropbox/Public/dtls_bug.c -Wno-deprecated-declarations -lssl -lcrypto -o /tmp/dtls_bug Running the test $ /tmp/dtls_bug $ As

[openssl-dev] [openssl.org #3657] OpenSSL 1.0.1k DTLS handshake no longer works

On Wed Jan 14 21:21:46 2015, shir...@gmail.com wrote: > Hi all, > > I believe I have found a bug which is only present in the latest > versions (1.0.1k) > > I have created a simple C test which does the following things in this > order: > > 1. initialize the SSL library > 2. creates an X509 key and

[openssl-dev] [openssl.org #3657] OpenSSL 1.0.1k DTLS handshake no longer works

Hi all, I believe I have found a bug which is only present in the latest versions (1.0.1k) I have created a simple C test which does the following things in this order: 1. initialize the SSL library 2. creates an X509 key and cert 3. creates an DTLS server SSL context 4. Setup 2 memory BIO inst

Re: [openssl-dev] Bug report: OpenSSL 1.0.1k DTLS handshake no longer works

Sorry for the mistake. here is the attachment again /* * Created by Gavriloaie Eugen-Andrei (shir...@gmail.com) * * The logical steps: * 1. initialize the SSL library * 2. creates an X509 key and cert * 3. creates an DTLS server SSL context * 4. Setup 2 memory BIO instances on the SSL conte

[openssl-dev] Bug report: OpenSSL 1.0.1k DTLS handshake no longer works

Hi all, I believe I have found a bug which is only present in the latest versions (1.0.1k). I ran this test on a linux 64 ubuntu 14.10 and mac os x yosemite I have created a simple C test which does the following things in this order: 1. initialize the SSL library 2. creates an X509 key and cer

Re: [openssl-dev] [PATCH] install issue on OpenVMS in 1.0.0 branch

Pushed! It's in commit 0c8dc6ebe5a969a57fb678b793d0dea651e33af7 I didn't remove the exheader_* variables. It's really of no practical consequence. Cheers, Richard In message <20150114.193558.401546991621005056.rich...@levitte.org> on Wed, 14 Jan 2015 19:35:58 +0100 (CET), Richard Levitte sai

Re: [openssl-dev] [PATCH] install issue on OpenVMS in 1.0.0 branch

Thanks. I've applied the fix and made an extra test, it only needs reviewing and pushed. Cheers, Richard In message <001101d02fcd$f50a04a0$df1e0de0$@com> on Wed, 14 Jan 2015 08:44:41 +0100, "Zoltan Arpadffy" said: zoli> Hi, zoli> zoli> during installation of 1.0.0 branch on OpenVMS the follo

[openssl-dev] [openssl.org #474] [PATCH] Crypto Engine Support for Chrysalis-ITS

company acquired, this ticket is ten years old, not going to happen. please re-open with updated patches if important. -- Rich Salz, OpenSSL dev team; rs...@openssl.org ___ openssl-dev mailing list To unsubscribe: https://mta.openssl.org/mailman/listinfo

[openssl-dev] [openssl.org #3656] Regarding Elliptic Curve Cryptography Issue

It looks like your openssl libraries were built without elliptic curve. Did look at the instructions in the link? This is not an openssl issue. -- Rich Salz, OpenSSL dev team; rs...@openssl.org ___ openssl-dev mailing list To unsubscribe: https://mta.ope

[openssl-dev] [openssl.org #3656] Regarding Elliptic Curve Cryptography Issue

Dear Sir, When i try to compile and run my Bitcoin code in fedora 18. It give me error root@localhost bitcoin-0.10.0rc1]# bitcoind *Error: OpenSSL appears to lack support for elliptic curve cryptography. For more information, visithttps://en.bitcoin.it/wiki/OpenSSL_and_EC_Libraries

[openssl-dev] [openssl.org #3655] Inconsistency in d2i_SSL_SESSION

Hi, I sent this to openssl-dev before and was advised to file it under rt... The implementation of d2i_SSL_SESSION() (in ssl_asn1.c) doesn't seem correct to me. d2i_SSL_SESSION() decodes an ASN1 encoding of an SSL_SESSION object previously encoded by i2d_SSL_SESSION(). Various SSL_SESSION fields

[openssl-dev] [openssl.org #3654] 1.0.1k not compiling

Hi - I have never reported bugs here before, so I hope I am doing it right. I have downloaded 1.0.1k, and I am trying to build it on Windows (for W32) using the build script I usually use, but compilation fails in crypto\cversion.c line 80, "cflags" is unknown. Comparing the entire cversion.c w

[openssl-dev] Forthcoming OpenSSL releases and reformat

-BEGIN PGP SIGNED MESSAGE- Hash: SHA1 The OpenSSL Project are pleased to make the following announcements: - - There will be new releases made available on Thursday 15th January for versions 1.0.1, 1.0.0 and 0.9.8. These will be bug fix only releases to address build problems with the cur

[openssl-dev] [openssl.org #3652] [PATCH] openssl-1.0.1k fails to compile under Windows

Hi Mark There is a fix for this issue currently in git (see commit 56cd7404). Closing this ticket. Matt ___ openssl-dev mailing list To unsubscribe: https://mta.openssl.org/mailman/listinfo/openssl-dev

[openssl-dev] [openssl.org #3651] Compilation error on Windows x64 in crypto/cversion.c

Hi Julien There is a fix for this issue currently in git (see commit 56cd7404). Closing this ticket. Matt ___ openssl-dev mailing list To unsubscribe: https://mta.openssl.org/mailman/listinfo/openssl-dev

[openssl-dev] [openssl.org #3646] Compile bug in 1.0.1k

Hi Ben There is a fix for this issue currently in git (see commit 56cd7404). Closing this ticket. Matt ___ openssl-dev mailing list To unsubscribe: https://mta.openssl.org/mailman/listinfo/openssl-dev