[openssl.org #1483] Missing set of parameters for GOST 28147-89

We've found out that ccgost Engine doesn't support one of parameter sets for GOST 28147-89 listed in RFC 4357. Actually S-Boxes for this parameter set present in gost89.c, but are not linked to appropriate OID. Attached patch fixes this problem and allows to use Gost28147_89_TestParamSet

[openssl.org #1525] ocsp.c doesn't compile for Windows target

ocsp.c (as of CVS state of May 15), revision 1.42 doesn't compile for Win32 target either with native MINGW32 or with Linux-hosted cross-compiler. Problem is that include file sys/select.h included on line 71, doesn't exist under Windows. BTW, this file uses macro OPENSSL_SYS_VMS, but doesn't

[openssl.org #1526] x86cpuid-elf.s cannot be compiled by Sun assembler on x86

In the revision 1.9 of file x86cpuid.pl there appeared block with some setne instructions: -- xor(eax,eax); cpuid (); xor(eax,eax); cmp(ebx,0x756e6547); # Genu setne (LB(eax)); mov(ebp,eax); cmp

[openssl.org #1843] Buffer overrun in X509_NAME_hash in the development branch of openssl

Recently (with commit of Jan 15 2009) MD5 hash function in X509_NAME_hash was replaced by SHA1. However local variable to hold computed hash value is still 16 bytes (when 20 is required). This causes stack corruption and segmentation faults on some platforms (detected on Debian Linux 4.0 amd64)

[openssl.org #1887] [patch] Fixes in openssl utitity documentation and builtin-help

We've found some typos and omissions in the openssl utility documentation (either builtin messages and pod pages). Following patch fixes some of these problems. We haven't thoroughly reviewed all the manual pages in the docs/app, concentrating on those commands which can use GOST algorithmns via

[openssl.org #1073] Problems with generating SSE2 instructions with no-sse2 configuration options

Hello, I've found following problem with compilation of OpenSSL on Solaris x86 platform: I use gcc 3.3 from www.sunfreeware.com, which is configured to use Sun native assembler. It seems that Sun assembler doesn't know anything about SSE2 instruction, and compilation of assembler file

[openssl.org #1078] OpenSSL 0.9.8-stable-SNAP-20050523 doesn't build with no-aes

Hello. When trying to build openssl with some cipher algorithms disabled I've encountered following result: making all in crypto/engine... gcc -I.. -I../.. -I../../include -fPIC -DOPENSSL_PIC -DZLIB -DOPENSSL_THREADS -pthread -D_THREAD_SAFE -D_REENTRANT -DDSO_DLFCN -DHAVE_DLFCN_H -DL_ENDIAN

[openssl.org #1079] Openssl config fails to determine architecture on FreeBSD 5.3-RELEASE

Hello, I've found out that OpenSSL fails to build correctly on FreeBSD 5.3-RELEASE machine, producing cryptic assembler messages. Further investingation shows that Openssl is configured for BSD-x86 (a.out) architecture instead of BSD-x86-elf problem is that elf/a.out test in config looks like

[openssl.org #1084] Incorrect RIPEMD160 calculation on Solaris/Sparc-64 bit

Attempt to build Openssl-0.9.8-stable-SNAP-20050530 on Solaris 8 sparc using 64-bit mode (solaris64-sparcv9-gcc target) results in error in RIEMD160 tests. If test_rmd target is excluded from the tests, all other tests pass correctly -- output of make test ../util/shlib_wrap.sh ./rmdtest

Re: [openssl.org #1084] Ticket Resolved

On 2005.05.31 at 14:40:46 +0200, Andy Polyakov via RT wrote: Hello According to our records, your request has been resolved. If you have any further questions or concerns, please respond to this message. Bug 1084 was resolved with following diagnositics Not OpenSSL problem. Explicitly

[openssl.org #1232] [PATCH] Flush s_server stdout after state change completed

openssl s_server command outputs to stdout messages, indicating current state of server, such as ACCEPT, DONE, ERROR. When s_server is run interactively, these messages appear on the console in time, and user can see it. But, when s_server is run from some other process via pipe, standard

[openssl.org #1421] EVP_PKEY_asn1_new() improperly initializes structure

In the current OpenSSL 0.9.9 CVS EVP_PKEY_asn1_new() function doesn't initialize fields old_priv_encode and old_priv_decode in the EVP_PKEY_ASN1_METHOD structure. This causes segfaults and bus error on Solaris/Sparc due to call to bogus pointers as functions.

[openssl.org #1440] [PATCH] Incorrect shared build of ccgost engine

File gost_eng.c contains macros IMPLEMENT_DYNAMIG_BIND_FN and IMPLEMENT_DYNAMIC_CHECK_FN, which should be expanded when engine is compiled as shared library, i.e. during default build of OpenSSL after ./config shared However, these macros are under #ifdef DYNAMIC_ENGINE_SUPPORT, and this macro

[openssl.org #1444] Insufficient error reporting in openssl ca

I've encountered following problem in OpenSSL 0.9.8d on Linux platform: When partition where database of my CA resides is full, Openssl ca command fails without reporting cause of problem. Output looks like: openssl ca -config /var/www/openssl-ca//rsa/ca.conf -notext -batch

[openssl.org #2262] Inconsistent error handling in the load_key function (apps.c)

We've accidently found out that openssl command line utility doesn't report correcrly why it is unable to load prviate key. Investigation shows that error reporting in the load_key function (in apps/apps.c) which is used by most commands of openssl utility, is incomplete and inconsistent. 1.