Hi, On Sat, May 21, 2016 at 11:32:40PM +0200, Jens Neuhalfen wrote: > This is > * Solaris 11.3 on Intel 64 bit (isainfo -k ???> amd64), fresh from > Sun^H^H^HOracle > > * OpenSSL 1.0.1p. openssl is compiled as 32 bit library (file > /lib/libcrypto.so.1.0.0 ???> /lib/libcrypto.so.1.0.0: ELF 32-bit LSB > dynamic lib 80386 Version 1 [SSE2 SSE MMX CMOV FPU], dynamically linked, not > stripped).
Tried building with 1.0.1p (using gcc), and the first thing to notice is
that *openssl* fails its own "make test" run (something in the RSA key test
aborts with "keys do not match"). So something is fishy with that version.
Interesting enough, our "make check" *still* works nicely for me...
-n Testing cipher AES-128-GCM...
OK
-n Testing cipher AES-192-GCM...
OK
-n Testing cipher AES-256-GCM...
OK
...
All 2 tests passed
So it does look like that 1.0.1p and Solaris do not get along well, but
it might depend on compiler used (I use gcc, Oracle surely does not).
The most recent version is 1.0.1t, which interestingly enough, has the
same self test error...
CMS consistency test
/opt/csw/bin/perl cms-test.pl
CMS => PKCS#7 compatibility tests
signed content DER format, RSA key: verify error
make[1]: *** [test_cms] Error 1
(this works in 1.0.2, so I think it's not my local system that is funny)
Ceterum censeo: I acknowledge that something is funny here, but I do not
think it's OpenVPN's fault (otherwise it should show up for me), so not
much we can do about it.
gert
--
USENET is *not* the non-clickable part of WWW!
//www.muc.de/~gert/
Gert Doering - Munich, Germany g...@greenie.muc.de
fax: +49-89-35655025 g...@net.informatik.tu-muenchen.de
signature.asc
Description: PGP signature
