Re: Question about OpenSSL 3.0 and static linking

a wrote: > > > > Hi List, > > > > I have a question about OpenSSL 3.0 and static linking. > > > > Short version: Is it possible to include the legacy provider in libcrypt.a? > > > > Somewhat long version below. > > As a background of the questi

Re: Question about OpenSSL 3.0 and static linking

22/2/22 5:37 pm, Shunichi Shinohara wrote: Hi List, I have a question about OpenSSL 3.0 and static linking. Short version: Is it possible to include the legacy provider in libcrypt.a? Somewhat long version below. As a background of the question I'm using OpenSSL with Erlang/OTP [1] on Linu

Re: Question about OpenSSL 3.0 and static linking

e: > > Hi List, > > I have a question about OpenSSL 3.0 and static linking. > > Short version: Is it possible to include the legacy provider in libcrypt.a? > > Somewhat long version below. > As a background of the question I'm using OpenSSL with Erlang/OTP [1] on

Re: Question about OpenSSL 3.0 and static linking

There is a define to allow this: STATIC_LEGACY but I don't remember how to specify it on the configuration command line. We should probably turn this on in a no-shared build. Pauli On 22/2/22 5:37 pm, Shunichi Shinohara wrote: Hi List, I have a question about OpenSSL 3.0 and static li

Question about OpenSSL 3.0 and static linking

Hi List, I have a question about OpenSSL 3.0 and static linking. Short version: Is it possible to include the legacy provider in libcrypt.a? Somewhat long version below. As a background of the question I'm using OpenSSL with Erlang/OTP [1] on Linux and want to static link OpenSSL library.

Re: Question About OpenSSL 3.0, FIPS and Solaris Support

The "unadopted" category is not the same as "unsupported".  We'll make an effort but if access to a physical machine is required, we will have to stop.  Whoever reports a problem will like have to assist with fixing it.  Be that by doing builds or writing code. The platform policy page categor

Question About OpenSSL 3.0, FIPS and Solaris Support

Hi, I'm hoping someone can shed some light on something that's confusing me. In the blog post about the FIPS submission it states that one of the platforms that's being tested is "Oracle Solaris 11.4 on Oracle SPARC M8-1"

Re: Question about OpenSSL .....

Sorry, I forgot to include also a link to INSTALL.md I am linking the preview from PR#12109 again, as it has been improved to leverage Markdown formatting to be more readable: https://github.com/openssl/openssl/blob/be101175badd30402d2e480a79e98ade1343cbfd/INSTALL.md#installing-openssl Same ca

Re: Question about OpenSSL .....

Hello and welcome! > On my system (Debian 10 - Buster) is OpenSSL installed with Version 1.1. > Now, I want to install OpenSSL 3.x, but which is the best way for that? > > Deinstall the old one, or? First, keep in mind that 3.x is still in alpha development stage, so using it as the system-wide l

Question about OpenSSL .....

Hello together, I am new here on this list and I have a question about OpenSSL. On my system (Debian 10 - Buster) is OpenSSL installed with Version 1.1. Now, I want to install OpenSSL 3.x, but which is the best way for that? Deinstall the old one, or? Best regards Zhéxué M.

Re: [openssl-users] Question about OpenSSL and FIPS 140-2 module

On 04/08/2016 17:53, Thomas Francis, Jr. wrote: ... I really should point out three things, though: 1) FIPS 140 compliance (from any software package) is always less secure than non-FIPS 140 compliant packages. By its nature, the validation process places software several months to years out

Re: [openssl-users] Question about OpenSSL and FIPS 140-2 module

> On Aug 4, 2016, at 11:00 AM, o haya wrote: > > Hi, > > I've been tasked to look into FIPS 140-2 "compliance" for our systems, > overall, and I know that there's a "FIPS 140-2 module" for OpenSSL, that > needs to be built from source and then integrated into OpenSSL by building > OpenSSL wi

Re: [openssl-users] Question about OpenSSL and FIPS 140-2 module

On 08/04/2016 11:00 AM, o haya wrote: > Hi, > > I've been tasked to look into FIPS 140-2 "compliance" for our > systems, overall, and I know that there's a "FIPS 140-2 module" for > OpenSSL, that needs to be built from source and then integrated into > OpenSSL by building OpenSSL with the FIPS mod

[openssl-users] Question about OpenSSL and FIPS 140-2 module

Hi, I've been tasked to look into FIPS 140-2 "compliance" for our systems, overall, and I know that there's a "FIPS 140-2 module" for OpenSSL, that needs to be built from source and then integrated into OpenSSL by building OpenSSL with the FIPS module. The User guide goes into how to integrate

Re: [openssl-users] Question about Openssl FIPS module and Python-openssl

>Is there anyway to make the FIPS mode always enabled by default in the library >layer, so that there's no need to invoke the FIPS_mode_set API? No. You'd have to end up calling some explicit routine of your own which called FIPS_mode_set. ___ openssl

[openssl-users] Question about Openssl FIPS module and Python-openssl

Thanks John. In that case it may be more complicated to invoke the *FIPS_mode_set *API from the Python layer. Is there anyway to make the FIPS mode always enabled by default in the library layer, so that there's no need to invoke the FIPS_mode_set API? Thanks. Your first questi

Re: [openssl-users] Question about Openssl FIPS module and Python-openssl

Your first question should be presented to the Python developers that provide support for OpenSSL. They would be the user of the OpenSSL API. I'm not a Python expert, but somewhere they would have a native layer that leverages the OpenSSL API. This native layer code would need to invoke FIPS_mod

[openssl-users] Question about Openssl FIPS module and Python-openssl

Hi, I've built an openssl library with the FIPS objects modules, and I was testing the new lib files by replacing the original library files such as libcrypto.so with the new ones. >From the FIPS user guide I understand that any applications which need to use the OpenSSL FIPS modules will need to

question about openssl speed aes speed tests

HI, I am running the speed option to measure the performance difference between 0.9.8y and 1.0.0k AES implementations. There seems to be a noticeable difference in the performance results between the two versions when I run 'openssl speed aes' on my MacBook. I see a performance degradation fro

RE: a question about openssl sessions

:14 To: openssl-users@openssl.org Subject: Re: a question about openssl sessions On Thu, Apr 19, 2012 at 19:45, Dave Thompson wrote: > From: owner-openssl-us...@openssl.org On Behalf Of Stéphane Charette > Sent: Sunday, 15 April, 2012 20:31 > I'm using Openss

Re: a question about openssl sessions

On Thu, Apr 19, 2012 at 19:45, Dave Thompson wrote: > > From: owner-openssl-us...@openssl.org On Behalf Of Stéphane > Charette > > Sent: Sunday, 15 April, 2012 20:31 > > > I'm using Openssl to talk to a server that expects to re-use ssl > > sessions when a client needs to open m

RE: a question about openssl sessions

> From: owner-openssl-us...@openssl.org On Behalf Of Stéphane Charette > Sent: Sunday, 15 April, 2012 20:31 > I'm using Openssl to talk to a server that expects to re-use ssl > sessions when a client needs to open many SSL connections. I have > the same code working on Linux a

a question about openssl sessions

I've sent 3 e-mails to the list over the past 10 days, but not a single reply. I'm a bit worried, as I don't know how else to get help on OpenSSL. I'm using Openssl to talk to a server that expects to re-use ssl sessions when a client needs to open many SSL connections. I have the same code work

回复： Re: question about openssl speed and blowfish

I have tested n times,but the result is same. OpenVPN renegotiate  keys every a hour. Bf-cbc should be faster or fastest.but...Bernhard Froehlich <[EMAIL PROTECTED]> 写道： songwb wrote:> Dear friends> I use OpenSSL's speed command testing the speed of Blowfish and> AES,find bf-cbc faster than aes-

Re: question about openssl speed and blowfish

AFAIK Blowfish key setup times are very high. That might account for the difference. All things being equal AES certainly gives you more security than any other cipher. And AES was chosen also because it was found fit for implementation on severely constrained embedded devices. So you get both

Re: question about openssl speed and blowfish

On Thu, Mar 02, 2006, ?? wrote: > Dear friends I use OpenSSL's speed command testing the speed of Blowfish and > AES,find bf-cbc faster than aes-128-cbc.But when I download a large file > from intranet of OpenVPN,find bf-cbc seems slower than aes-128-cbc,why? Can > you give help? thanks! >

Re: question about openssl speed and blowfish

维宾 宋 wrote: > Dear friends > I use OpenSSL's speed command testing the speed of Blowfish and > AES,find bf-cbc faster than aes-128-cbc.But when I download a large > file from intranet of OpenVPN,find bf-cbc seems slower than > aes-128-cbc,why? Can you give help? thanks! > ---download rate--- > aes-

question about openssl speed and blowfish

Dear friends   I use OpenSSL's speed command testing the speed of Blowfish and AES,find bf-cbc faster than aes-128-cbc.But when I download a large file from intranet of OpenVPN,find bf-cbc seems slower than aes-128-cbc,why? Can you give help? thanks! 

Re: Question about openssl genrsa

Joppe Bos wrote: Hello everyone, I am fairly new with openssl and am trying to write a function which can make a public / private key pair with GMP (an open source big number library). I am doing this to compare the running time with openssl. I have a few questions regarding the openssl genrsa c

Question about openssl genrsa

Hello everyone, I am fairly new with openssl and am trying to write a function which can make a public / private key pair with GMP (an open source big number library). I am doing this to compare the running time with openssl. I have a few questions regarding the openssl genrsa command: - What

RE: A question about openssl used library

> Dear all: > I have a question about used libraries by openssl toolkits. > OpenSSL toolkits includes three modules: libssl.a ,libcrypto.a > ,and openssl. > Can I only use the command line tool "openssl" > independently without use any library like "libcrypto.so.0.9.8" ?? It all depe

A question about openssl used library

Dear all: I have a question about used libraries by openssl toolkits. OpenSSL toolkits includes three modules: libssl.a ,libcrypto.a ,and openssl. Can I only use the command line tool "openssl" independently without use any library like "libcrypto.so.0.9.8" ?? regards. Eric. _

Re: Question about OpenSSL test server

Hello: I'm rigth ?? if i'm right how can i know the key that is being used for decrypt the message ?? I have my problem fixed yet thanks :) --- Best regards Carlos Guzmán Álvarez Vigo-Spain _ Localiza y ponte en contacto con tus

Re: Question about OpenSSL test server

Hello: The key derivation and encryption for TLS is done in ssl/t1_enc.c there's actually some debugging code in there already so if you #define TLS_DEBUG it should print out all the keys for you. I'm making more test using debugging features of openssl ( nice features ), i'm trying to build

Re: Question about OpenSSL test server

Hello: The key derivation and encryption for TLS is done in ssl/t1_enc.c there's actually some debugging code in there already so if you #define TLS_DEBUG it should print out all the keys for you. Thanks very much i will try to do a build using this define :) Best regards Carlos Guzman Alvarez

Re: Question about OpenSSL test server

On Wed, Aug 20, 2003, Carlos G.A. wrote: > Hello: > > I'm making an implementation of the TLS 1.0 protocol in C#, for testing > it i'm using OpenSSL under Cygwin ( openssl s_server ... ), i have a > question about debug output, there are any way for know what are the > keys that the server is usi

Re: Question about OpenSSL test server

Hello: www.rtfm.com/ssldump/ Thanks i will try it :) -- Best regards Carlos Guzman Alvarez Vigo-Spain _ Melodías, logos y mil servicios para tu teléfono en MSN Móviles. http://www.msn.es/MSNMovil/ ___

Re: Question about OpenSSL test server

Using ssldump might help. It does a lot of decoding of the data exchanged between a client and server. www.rtfm.com/ssldump/ Ashu Carlos G.A. wrote: > Hello: > > I'm making an implementation of the TLS 1.0 protocol in C#, for testing > it i'm using OpenSSL under Cygwin ( openssl s_server ... ),

Question about OpenSSL test server

Hello: I'm making an implementation of the TLS 1.0 protocol in C#, for testing it i'm using OpenSSL under Cygwin ( openssl s_server ... ), i have a question about debug output, there are any way for know what are the keys that the server is using for data encryption/decryption, i need this because

Question about OpenSSL Reinstall

I want to reinstall OpenSSL on a Sparc v9 machine running Solaris 8. I've deleted the original installation but when I try to run config I get the following message: Configuring for solaris-sparcv9-cc target already defined - solaris-sparcv9-cc This is with ./config --prefix=usr

RE: simple question about OpenSSL and HTTP

TED]] Sent: Thursday, September 06, 2001 5:06 PM To: [EMAIL PROTECTED] Subject: Re: simple question about OpenSSL and HTTP Mars, have a look at http://www.modssl.org/ cheers, Sean MARS.LIN ªL¨|¼w wrote: > > I have a simple question about OpenSSL and HTTP > I try to enhance httpd codes in

Re: simple question about OpenSSL and HTTP

Mars, have a look at http://www.modssl.org/ cheers, Sean MARS.LIN ªL¨|¼w wrote: > > I have a simple question about OpenSSL and HTTP > I try to enhance httpd codes into secure one, such as httpsd. > could i simply combine openssl library with httpd codes for that? > are ther

simple question about OpenSSL and HTTP

Hi folks, I have a simple question about OpenSSL and HTTP I try to enhance httpd codes into secure one, such as httpsd. could i simply combine openssl library with httpd codes for that? are there any different between http and https except for the ssl handshacking? best regards, Mars