Re: Building OpenSSL for EFI

> I would like (need) to get OpenSSL working in the EFI [...] In the EDK-2, this directory: edk2/trunk/edk2/CryptoPkg/Library/OpensslLib/* showd you how to patch, configure, and build OpenSSL in the EDK-2 environment. Also look in some nearby include directories for OpenSSL headers and in

Re: OpenSSL 1.0.1c, Mac OS X, -no-XXX, and [missing] make depend

On Sat, Jan 19, 2013 at 11:42 AM, Ben Laurie wrote: > On 19 January 2013 16:31, Jeffrey Walton wrote: >> On Sat, Jan 19, 2013 at 9:17 AM, Ben Laurie wrote: >>> On 26 December 2012 20:07, Jeffrey Walton wrote: On Wed, Dec 26, 2012 at 9:57 AM, Ben Laurie wrote: > On Tue, Dec 25, 2012 at

Re: Can I build the FIPS module with /MT?

On Sun, Jan 20, 2013 at 6:51 PM, wrote: > On 18-01-2013 20:26, Jeffrey Walton wrote: >> >> On Fri, Jan 18, 2013 at 11:01 AM, Memmott, Lester >> wrote: All modern Versions of Microsoft's C Runtime are thread safe. That occurred around Visual Studio 6.0 (circa 2000 or so). >>> >>> >

Re: Can I build the FIPS module with /MT?

On 18-01-2013 20:26, Jeffrey Walton wrote: On Fri, Jan 18, 2013 at 11:01 AM, Memmott, Lester wrote: All modern Versions of Microsoft's C Runtime are thread safe. That occurred around Visual Studio 6.0 (circa 2000 or so). >From http://msdn.microsoft.com/en-us/library/abx4dbyh.aspx: "The singl

RE: Failure to generate RSA key in FIPS mode

I'm cross compiling it to run on arm, so maybe that is the problem (although without FIPS everything is working fine). First I compiled the FIPS object module (using command: './Configure linux-generic32 -Wall -fPIC' ) Then, I created shared object of openSSL which uses fipscanister.o (compiling

Re: print result of SSL_get_verify_result

On Sat, Jan 19, 2013, ask wrote: > > Is there is a function in ERR_*  that can print the text from code? > Not in ERR_* no because the error doesn't come from the ERR library. You can instead use X509_verify_cert_error_string(err) Steve. -- Dr Stephen N. Henson. OpenSSL project core developer.

Re: Failure to generate RSA key in FIPS mode

On Sun, Jan 20, 2013, Oz, Tal (Tal) wrote: > Hi, > > I'm using OpenSSL 1.0.1c linked with FIPS object module. > On startup FIPS is enabled successfully (using FIPS_mode_set function). > > When I try to generate rsa key it failed with error 'non fips rsa method'. > I tried calling both EVP API an

Failure to generate RSA key in FIPS mode

Hi, I'm using OpenSSL 1.0.1c linked with FIPS object module. On startup FIPS is enabled successfully (using FIPS_mode_set function). When I try to generate rsa key it failed with error 'non fips rsa method'. I tried calling both EVP API and rsa function directly (RSA_generate_key). I can see it f

Re: Web site: "Send to Majordomo" broken

On 16 Jan 2013, at 17:27, Lutz Jaenicke wrote: > Thanks for your update. I have fixed the links. http://openssl.org/support/rt.html also has a broken link to the 'list' of bugs - http://rt.openssl.org/NoAuth/Buglist.html returns "Page Not Found" but http://rt.openssl.org works. -- Bruce Cr

Re: OpenSSL 1.0.1c, Mac OS X, -no-XXX, and [missing] make depend

On 19 January 2013 16:31, Jeffrey Walton wrote: > On Sat, Jan 19, 2013 at 9:17 AM, Ben Laurie wrote: >> On 26 December 2012 20:07, Jeffrey Walton wrote: >>> On Wed, Dec 26, 2012 at 9:57 AM, Ben Laurie wrote: On Tue, Dec 25, 2012 at 1:35 PM, Jeffrey Walton wrote: > I fetched `makedepen