[openssl-dev] [openssl.org #4236] SSL_connect() crash with CRL

On Wed May 11 22:16:00 2016, dan...@haxx.se wrote: > > > Sorry, that problem was fixed at some later point and I've not seen it > trigger > recently. I forgot to mark it as such in the bug. OK, thanks for the update. Ticket closed. Steve. -- Dr Stephen N. Henson. OpenSSL project core developer.

Re: [openssl-dev] [openssl.org #4236] SSL_connect() crash with CRL

On Wed, 11 May 2016, Stephen Henson via RT wrote: > I've pulled the latest curl using git and OpenSSL master. I had to make one > minor change to curl to get it to compile. I can't reproduce the problem > with test 313: it seems to work fine. I've tried it using the verify utility > and

[openssl-dev] Signing Internet-Drafts and RFCs

Today, the IETF uses OpenSSL to digitally sign Internet-Drafts. If you care about the details, please see RFC 5485. We are looking to expand Internet-Draft signing, and start signing RFCs as well. Someone has suggested that we support RFC 5126, "CMS Advanced Electronic Signatures (CAdES)”.

Re: [openssl-dev] How to contribute patches has changed

If it's a feature, wait until after 1.1 and then rebase. If it's a bug or doc fix or similar, please update now and ping. It's the windows RNG fix/cleanup. Just updated and now no conflicts on PR. https://github.com/openssl/openssl/pull/512 Thanks! Joey -- openssl-dev mailing list To

Re: [openssl-dev] How to contribute patches has changed

> I haven't been keeping my PR #512 up to date since the 1.1 code freeze, is > now a good time to start again? If it's a feature, wait until after 1.1 and then rebase. If it's a bug or doc fix or similar, please update now and ping. -- openssl-dev mailing list To unsubscribe:

Re: [openssl-dev] How to contribute patches has changed

The summary could be phrase as “just open a GitHub PR, no need to deal with RT” I haven't been keeping my PR #512 up to date since the 1.1 code freeze, is now a good time to start again? cheers, Joey -- openssl-dev mailing list To unsubscribe:

[openssl-dev] How to contribute patches has changed

We've updated our preferred way to submit patches. Please see the CONTRIBUTING file, which you can find here (among other places): https://github.com/openssl/openssl/blob/master/CONTRIBUTING The summary could be phrase as "just open a GitHub PR, no need to deal with RT" We hope this will

[openssl-dev] [openssl.org #4324] openssl-1.1.0-pre3 with solaris-x86-cc & solaris64-x86_64-cc make fails

Thank you. Closing this ticket. On Wed May 11 15:01:07 2016, yoi_no_myou...@yahoo.co.jp wrote: > Hello, > > They are fixed in openssl-1.1.0-pre5. > > Regards, > > > --- Kiyoshi > > > > > - Original Message - > > From: Richard Levitte via RT

[openssl-dev] [openssl.org #4452] openssl-1.1.0-pre4: undefined symbol for solaris-x86-cc

Thank you. Closing this ticket. On Wed May 11 14:57:09 2016, yoi_no_myou...@yahoo.co.jp wrote: > Hello, > > It is fixed in openssl-1.1.0-pre5. > > Thanks, > > --- Kiyoshi > > > > > - Original Message - > > From: Richard Levitte via RT > >

[openssl-dev] [openssl.org #4453] openssl-1.1.0-pre4: make fails with 'wrong ELF class: ELFCLASS64' on solaris64-x86_64-cc

Thank you. Closing this ticket. On Wed May 11 15:15:49 2016, yoi_no_myou...@yahoo.co.jp wrote: > Hi, > > Checked with openssl-1.1.0-pre5, > and confirmed it is fixed. > > Thanks, > > --- Kiyoshi > > > > > - Original Message - > > From: Richard Levitte via RT

[openssl-dev] [openssl.org #4442] PATCH: fix typo in AF_ALG engine name

Thanks, applied. Steve. -- Dr Stephen N. Henson. OpenSSL project core developer. Commercial tech support now available see: http://www.openssl.org -- Ticket here: http://rt.openssl.org/Ticket/Display.html?id=4442 Please log in as guest with password guest if prompted -- openssl-dev mailing

[openssl-dev] [openssl.org #4363] [PATCH] Adding missing BN_CTX_(start/end) in crypto/ec/ec_key.c

Applied, thanks for the report. Steve. -- Dr Stephen N. Henson. OpenSSL project core developer. Commercial tech support now available see: http://www.openssl.org -- Ticket here: http://rt.openssl.org/Ticket/Display.html?id=4363 Please log in as guest with password guest if prompted --

[openssl-dev] [openssl.org #3723] Patch to add short name "Email" to "emailAddress" object

As a bit of follow-up here, it looks like the behavior changed from using "Email" as a shortname for this attribute to just using the long form "emailAddress" in commit 30911232c17f309f947156959fcbbf504c1b66fe back in 2002. The commit message there was pretty sparse, "Some more OID

Re: [openssl-dev] 1.0.1t: test fails due to expired cert

On Tue, May 10, 2016, Viktor Dukhovni wrote: [looks like there are at least three different threads now? hence I made the Subject a bit more generic.] > > 34371851688:error:21075075:PKCS7 routines:PKCS7_verify:certificate verify > > error:pk7_smime.c:328:Verify error:certificate has expired >

[openssl-dev] smime-certs certificates are expired in 1.0.1 sources

Cert files under openssl-1.0.1t/test/smime-certs are expired on May 11 2016. This makes cms-test.pl test to fail while running "make test". Reproduced on Linux. I think they should be updated since when cms-test.pl is failing it’s not quite clear why it fails. Had to go inside that test and

[openssl-dev] [openssl.org #4539] Documentation - Cipher names changed between 1.0.2 & 1.1.0-pre

Hello Folks, I'd like to suggest the "ciphers" documentation in 1.1.0 be updated to include the old EDH names for ciphers which were renamed to DHE between 1.0.2 & 1.1.0-pre. I think there are only two affected which are still available: EDH-RSA-DES-CBC3-SHA & EDH-DSS-DES-CBC3-SHA.

[openssl-dev] [openssl.org #4236] SSL_connect() crash with CRL

On Thu Jan 14 17:08:13 2016, dan...@haxx.se wrote: > Hey > > I've had this crash for a while with current openssl git master. It is > perfectly reproducable using curl test 313 and I have an openssl build > here > with debug symbols so I can provide more info to help someone diagnose > this, >

Re: [openssl-dev] [openssl.org #4453] openssl-1.1.0-pre4: make fails with 'wrong ELF class: ELFCLASS64' on solaris64-x86_64-cc

Hi, Checked with openssl-1.1.0-pre5, and confirmed it is fixed. Thanks, --- Kiyoshi - Original Message - > From: Richard Levitte via RT > To: yoi_no_myou...@yahoo.co.jp > Cc: openssl-dev@openssl.org > Date: 2016/5/11, Wed 06:01 >

Re: [openssl-dev] [openssl.org #4324] openssl-1.1.0-pre3 with solaris-x86-cc & solaris64-x86_64-cc make fails

Hello, They are fixed in openssl-1.1.0-pre5. Regards, --- Kiyoshi - Original Message - > From: Richard Levitte via RT > To: yoi_no_myou...@yahoo.co.jp > Cc: openssl-dev@openssl.org > Date: 2016/5/11, Wed 05:29 > Subject: [openssl.org

Re: [openssl-dev] [openssl.org #4452] openssl-1.1.0-pre4: undefined symbol for solaris-x86-cc

Hello, It is fixed in openssl-1.1.0-pre5. Thanks, --- Kiyoshi - Original Message - >From: Richard Levitte via RT >To: yoi_no_myou...@yahoo.co.jp >Cc: openssl-dev@openssl.org >Date: 2016/5/11, Wed 05:57 >Subject: [openssl.org #4452]

[openssl-dev] [openssl.org #4387] [PATCH] Fix V2ClientHello handling

Patch applied in cb21df322. Thanks. Matt -- Ticket here: http://rt.openssl.org/Ticket/Display.html?id=4387 Please log in as guest with password guest if prompted -- openssl-dev mailing list To unsubscribe: https://mta.openssl.org/mailman/listinfo/openssl-dev

Re: [openssl-dev] [openssl.org #4311] OpenSSL 1.1.0-pre3: quote PERL=$(PERL) in Makefiles

Am 10.05.2016 um 21:54 schrieb Richard Levitte via RT: I understand this part. What I'm questioning is the need to set PERL to "/usr/bin/env perl" to begin with. It's practically not different at all from setting it to just "perl", all this does is that any time the environment variable PERL is

Re: [openssl-dev] [openssl.org #4311] OpenSSL 1.1.0-pre3: quote PERL=$(PERL) in Makefiles

Am 10.05.2016 um 21:54 schrieb Richard Levitte via RT: > I understand this part. What I'm questioning is the need to set PERL to > "/usr/bin/env perl" to begin with. It's practically not different at all from > setting it to just "perl", all this does is that any time the environment > variable

[openssl-dev] [openssl.org #4379] "arch/async_posix.h:67:24: error: ucontext.h: No such file or directory" under OpenBSD 5.7/64-bit

On Sat Mar 05 02:22:00 2016, noloa...@gmail.com wrote: > cc -I.. -I../.. -I../modes -I../include -I../../include -DDSO_DLFCN > -DHAVE_DLFCN_H -DOPENSSL_THREADS -DOPENSSL_NO_STATIC_ENGINE > -DOPENSSL_PIC -DOPENSSL_IA32_SSE2 -DOPENSSL_BN_ASM_MONT > -DOPENSSL_BN_ASM_MONT5 -DOPENSSL_BN_ASM_GF2m

[openssl-dev] cms-test.pl failing - expired certs

Hi, tests/cms-test.pl is failing, as the smime-certs/ expired yesterday / expire today. Can someone please generate correct new certs? Ciao, Marcus -- openssl-dev mailing list To unsubscribe: https://mta.openssl.org/mailman/listinfo/openssl-dev

Re: [openssl-dev] cms-test.pl failing - expired certs

On Wed, May 11, 2016 at 11:24:00AM +0200, Marcus Meissner wrote: > Hi, > > tests/cms-test.pl is failing, as the smime-certs/ expired yesterday / expire > today. > > Can someone please generate correct new certs? Hups. I only looked at 1.0.1 branch. The certs are refreshed in 1.0.2 and master.

Re: [openssl-dev] DTLS session resumption with DTLS_ANY_VERSION

On 10/05/16 18:34, Rajeswari K wrote: > Hello openssl-dev team, > > Having query regarding DTLS session resumption when configured SSL_CTX > with DTLS_ANY_VERSION. > > When we select SSL_CTX with DTLS_ANY_VERSION, method will be of > DTLS_Server_method(), which will have ssl_ctx->version as

Re: [openssl-dev] [openssl.org #4523] Failure - make test

Hi, > I got an failure at "make test" sea end of Mail Well, at the end of the mail it says that it failed to link. It's rather indication of something going wrong with *your* compiler setup. We more or less stand for correctness of code and you stand for providing sane compiler environment it

Re: [openssl-dev] Packager material in our source...

Though I don't use RedHat or it's derivatives, it's packaging file is at least mercifully self-contained. Also, spec files can be used to generate packaging files for other formats. I'd advocate for leaving it in... just not very forcefully. On 5/11/2016 12:09 AM, Richard Levitte wrote: Hi,

[openssl-dev] Packager material in our source...

Hi, I've been wondering, why do we have an openssl.spec in the OpenSSL source? Why would we have packager material in there at all, and if we should have such things, why only for RPMs, why not Debian, why not stuff to build Windows .msis, why not stuff to build PCSI files (for VMS)? This is to

[openssl-dev] [openssl.org #4444] [openssl-1.1.0-pre4] Make fails with "recipe for target 'depend' failed" on solaris64-x86_64

Thanks. re-closing. On Wed May 11 03:34:26 2016, e...@efca.com wrote: > no idea where this OLD message came from. > In any case, do ignore, problem has been solved for many weeks. > > >-- Original Message -- > > > > > >still not working right. > >Attached a longish log file extract. > >But root