AW: building OpenSSL 1.1.1 with -DPURIFY

2019-10-09 Thread Dr. Matthias St. Pierre
Hi Tim, > However, when I run the tests there appears to be failures. > > Extract of the make test output below: > > > ../test/recipes/20-test_enc.t .. > Dubious, test returned 1 (wstat 256, 0x100) > Failed 1/172 subtests Your test failure looks like issue https://github.

RE: building OpenSSL 1.1.1 with -DPURIFY

2019-10-09 Thread tim.j.culhane
Hi Tomás I've downloaded and build openssl 1.1.1d. However, when I run the tests there appears to be failures. Extract of the make test output below: ../test/recipes/20-test_enc.t .. Dubious, test returned 1 (wstat 256, 0x100) Failed 1/172 subtests Test summary shows:

Troubles Compiling in Mobaxterm

2019-10-09 Thread Georg Höllrigl
Hello, I've tried to compile openssl 1.1.1d in Mobaxterm. The same is working with 1.1.1c Any ideas, what's wrong? Georg /openssl-1.1.1d ./config no-async && time make Operating system: i686-pc-cygwin Configuring OpenSSL version 1.1.1d (0x1010104fL) for Cygwin-x86 Using os-specific seed confi

Re: full-chain ocsp stapling

2019-10-09 Thread Jeremy Harris
On 01/10/2019 12:21, Jeremy Harris wrote: > On 30/09/2019 17:02, Matt Caswell wrote: >>> Alternatively^2, is there some way to get such a blob from a tool >>> (openssl ocsp, or similar) ready built? For this purpose, I am >>> the CA. >>> >> >> Yes, you can do this. For example see the "respout"

Re: building OpenSSL 1.1.1 with -DPURIFY

2019-10-09 Thread Tomas Mraz
On Wed, 2019-10-09 at 11:37 +0100, tim.j.culh...@gmail.com wrote: > Hi, > > I've built OpenSSL 1.1.1c locally on my 64 bit CentOS 7 server. > > My application links with the libraries contained in this build. > > When running tests for my application under valgrind I'm seeing lots > of > erro

Re: building OpenSSL 1.1.1 with -DPURIFY

2019-10-09 Thread Salz, Rich via openssl-users
Emilia's work removed the need to add -DPURIFY; you never need to add it. Note that the BN code is clever, it doesn't bother to zero everything when it knows which bits within a word it is using.

Re: building OpenSSL 1.1.1 with -DPURIFY

2019-10-09 Thread Eric Deplagne
On Wed, 09 Oct 2019 11:37:02 +0100, tim.j.culh...@gmail.com wrote: > Hi, > > I've built OpenSSL 1.1.1c locally on my 64 bit CentOS 7 server. > > My application links with the libraries contained in this build. > > When running tests for my application under valgrind I'm seeing lots of > error

ECC CDH (KAS)

2019-10-09 Thread Neil Proctor via openssl-users
Hello, I had a question regarding the ECC CDH (KAS) algorithm listed on Page 15 of https://www.openssl.org/docs/fips/SecurityPolicy-2.0.15.pdf Which mode is used for the Key Agreement Scheme? Full Unified Full MVQ Ephemeral Unified One Pass Unified One Pass MVQ One Pass DH Static Unified And

building OpenSSL 1.1.1 with -DPURIFY

2019-10-09 Thread tim.j.culhane
Hi, I've built OpenSSL 1.1.1c locally on my 64 bit CentOS 7 server. My application links with the libraries contained in this build. When running tests for my application under valgrind I'm seeing lots of errors like the below: Use of uninitialised value of size 8 at 0x4C30DDF: memset (