[openssl-users] OpenSSL v1.1.1 static library size reduction

I am using OpenSSL 1.1.1 from OpenSSL's website and trying to build OpenSSL on a Windows 64 bit machine using Perl 64 bit version and nasm v2.13.03. I have used the *no-shared* option in the Perl Configure to only build the static library and the resulting size of the *libcrypto.lib* file is almost

Re: [openssl-users] SSL_GET_SERVER_CERT_INDEX:internal error

> On Dec 20, 2018, at 6:43 PM, Jeremy Harris wrote: > > Thanks for the hint. You are correct, and a clear before that set > of crypto operations gets me a far more reasonable message. Makes sense. > The error seems to be left around after SSL_accept(), and yet > it does not appear in my SNI

Re: [openssl-users] EVP_DecryptUpdate: why is this failing when out == in?

I filed https://github.com/openssl/openssl/issues/7941 about this FYI. Cheers! On Wed, 2018-12-19 at 01:56 -0500, Paul Smith wrote: > As I understand it, it's legal to provide the exact same input and > output buffer to EVP_EncryptUpdate and EVP_DecryptUpdate, but it's not > legal to provide poi

Re: [openssl-users] SSL_GET_SERVER_CERT_INDEX:internal error

On 20/12/2018 17:16, Viktor Dukhovni wrote: >> "14142044:SSL routines:SSL_GET_SERVER_CERT_INDEX:internal error" > > This is an SSL library error in your error stack. Likely left > over from an earlier function call, with no ERR_clear_error() > before the new call. Thanks for the hint. You are co

Re: [openssl-users] SSL_GET_SERVER_CERT_INDEX:internal error

> On Dec 20, 2018, at 8:00 AM, Jeremy Harris wrote: > > Library version: OpenSSL: Compile: OpenSSL 1.0.2k-fips 26 Jan 2017 > Runtime: OpenSSL 1.0.2k-fips 26 Jan 2017 > built on: reproducible build, date unspecified CentOS 7.6.181 > > "14142044:SSL routines:SSL_

Re: [openssl-users] A script for hybrid encryption with openssl

On 18/12/2018 18:04, Sam Roberts wrote: > Maybe you should look at gpg directly, `gpg --symmetric` uses a passphrase, > which doesn't sound fiddly. Unfortunately that doesn't do what I want: I'm after something using public key encryption (asymmetric, or a hybrid). This is so I don't need to deplo

[openssl-users] SSL_GET_SERVER_CERT_INDEX:internal error

Hi, Library version: OpenSSL: Compile: OpenSSL 1.0.2k-fips 26 Jan 2017 Runtime: OpenSSL 1.0.2k-fips 26 Jan 2017 : built on: reproducible build, date unspecified CentOS 7.6.181 "14142044:SSL routines:SSL_GET_SERVER_CERT_INDEX:internal

[openssl-users] Celebrating 20 Years of OpenSSL

Just about 20 years ago we released the first OpenSSL, but that wasn't the original name for the project. Read more in the blog post at https://www.openssl.org/blog/blog/2018/12/20/20years/ Regards, Mark J Cox -- openssl-users mailing list To unsubscribe: https://mta.openssl.org/mailman/listinfo