Open SSL Users

• Thread Index

• OpenSSL Security Advisory
  • From: Matt Caswell <matt@xxxxxxxxxxx>
• OpenSSL version 1.1.1l published
  • From: Matt Caswell <matt@xxxxxxxxxxx>
• Re: 3.0.0. IMPLEMENT_ASN1_FUNCTIONS missing _it prototypes
  • From: Richard Levitte <levitte@xxxxxxxxxxx>
• Re: 3.0.0. IMPLEMENT_ASN1_FUNCTIONS missing _it prototypes
  • From: Matt Caswell <matt@xxxxxxxxxxx>
• Re: x509v3-sign-rsa, x509v3-ssh-rsa and x509v3-rsa2048-sha256
  • From: Dirk-Willem van Gulik <dirkx@xxxxxxxxxxxxxx>
• x509v3-sign-rsa, x509v3-ssh-rsa and x509v3-rsa2048-sha256
  • From: murugesh pitchaiah <murugesh.pitchaiah@xxxxxxxxx>
• 3.0.0. IMPLEMENT_ASN1_FUNCTIONS missing _it prototypes
  • From: Ken Goldman <kgoldman@xxxxxxxxxx>
• Re: Set X509 public key in 1.0.2
  • From: Ken Goldman <kgoldman@xxxxxxxxxx>
• Re: problems with too many ssl_read and ssl_write errors
  • From: Jakob Bohm via openssl-users <openssl-users@xxxxxxxxxxx>
• Re: problems with too many ssl_read and ssl_write errors
  • From: Kamala Ayyar <kamala.ayyar@xxxxxxxxx>
• RE: Need some help signing a certificate request
  • From: Michael Wojcik <Michael.Wojcik@xxxxxxxxxxxxxx>
• Re: Need some help signing a certificate request
  • From: Jakob Bohm via openssl-users <openssl-users@xxxxxxxxxxx>
• Re: Need some help signing a certificate request
  • From: Keine Eile <keine-eile@xxxxxxxxx>
• RE: Need some help signing a certificate request
  • From: <rgordey@xxxxxxxxxxxxxxx>
• RE: Need some help signing a certificate request
  • From: <rgordey@xxxxxxxxxxxxxxx>
• RE: Need some help signing a certificate request
  • From: <rgordey@xxxxxxxxxxxxxxx>
• Re: Need some help signing a certificate request
  • From: Keine Eile <keine-eile@xxxxxxxxx>
• RE: Need some help signing a certificate request
  • From: Michael Wojcik <Michael.Wojcik@xxxxxxxxxxxxxx>
• RE: Need some help signing a certificate request
  • From: <rgordey@xxxxxxxxxxxxxxx>
• RE: Need some help signing a certificate request
  • From: <rgordey@xxxxxxxxxxxxxxx>
• RE: Need some help signing a certificate request
  • From: Michael Wojcik <Michael.Wojcik@xxxxxxxxxxxxxx>
• RE: Need some help signing a certificate request
  • From: <rgordey@xxxxxxxxxxxxxxx>
• Re: Need some help signing a certificate request
  • From: Tom Browder <tom.browder@xxxxxxxxx>
• Need some help signing a certificate request
  • From: <rgordey@xxxxxxxxxxxxxxx>
• Re: Set X509 public key in 1.0.2
  • From: Thomas Dwyer III <tomiii@xxxxxxxxxx>
• Set X509 public key in 1.0.2
  • From: Ken Goldman <kgoldman@xxxxxxxxxx>
• RE: problems with too many ssl_read and ssl_write errors
  • From: Michael Wojcik <Michael.Wojcik@xxxxxxxxxxxxxx>
• Re: IMPLEMENT_ASN1_FUNCTIONS tutorial or help
  • From: Ken Goldman <kgoldman@xxxxxxxxxx>
• Re: libcrypto.dylib, building for macOS-arm64 but attempting to link with file built for macOS-x86_64
  • From: Jakob Bohm via openssl-users <openssl-users@xxxxxxxxxxx>
• Re: Crash seen in "OPENSSL_sk_pop_free" API
  • From: Viktor Dukhovni <openssl-users@xxxxxxxxxxxx>
• Re: Crash seen in "OPENSSL_sk_pop_free" API
  • From: Bala Duvvuri via openssl-users <openssl-users@xxxxxxxxxxx>
• Re: Getting error:0B080074:x509 certificate routines:X509_check_private_key:key values mismatch
  • From: Viktor Dukhovni <openssl-users@xxxxxxxxxxxx>
• Getting error:0B080074:x509 certificate routines:X509_check_private_key:key values mismatch
  • From: Jayalakshmi bhat <bhat.jayalakshmi@xxxxxxxxx>
• problems with too many ssl_read and ssl_write errors
  • From: David Bowers via openssl-users <openssl-users@xxxxxxxxxxx>
• libcrypto.dylib, building for macOS-arm64 but attempting to link with file built for macOS-x86_64
  • From: Stephen Dominic Liang <steven@xxxxxxxxx>
• RE: [EXTERNAL] Re: IMPLEMENT_ASN1_FUNCTIONS tutorial or help
  • From: "Sands, Daniel via openssl-users" <openssl-users@xxxxxxxxxxx>
• Re: IMPLEMENT_ASN1_FUNCTIONS tutorial or help
  • From: Ken Goldman <kgoldman@xxxxxxxxxx>
• Re: [EXTERNAL] Re: IMPLEMENT_ASN1_FUNCTIONS tutorial or help
  • From: Ken Goldman <kgoldman@xxxxxxxxxx>
• Re: Help Needed for deprecated functions and macros like "CRYPTO_num_locks()" , "CRYPTO_LOCK" ......etc
  • From: Dr Paul Dale <pauli@xxxxxxxxxxx>
• RE: [EXTERNAL] Re: IMPLEMENT_ASN1_FUNCTIONS tutorial or help
  • From: "Sands, Daniel via openssl-users" <openssl-users@xxxxxxxxxxx>
• Re: Openssl 1.1.1 - QNX support removed?
  • From: Heikki Vatiainen <hvn@xxxxxxxxxxx>
• Forthcoming OpenSSL release
  • From: Matt Caswell <matt@xxxxxxxxxxx>
• Re: IMPLEMENT_ASN1_FUNCTIONS tutorial or help
  • From: Ken Goldman <kgoldman@xxxxxxxxxx>
• Re: IMPLEMENT_ASN1_FUNCTIONS tutorial or help
  • From: Matt Caswell <matt@xxxxxxxxxxx>
• Help Needed for deprecated functions and macros like "CRYPTO_num_locks()" , "CRYPTO_LOCK" ......etc
  • From: "Kumar Mishra, Sanjeev" <Sanjeev.Kumar-Mishra@xxxxxxxx>
• DES_is_weak_key replacement in openssl 3.0
  • From: "Paramashivaiah, Sunil" <Sunil.Paramashivaiah@xxxxxxxx>
• RE: Replacing DES_ede3_cbc_encrypt with EVP API's for upgrading to openssl 3.0
  • From: "Paramashivaiah, Sunil" <Sunil.Paramashivaiah@xxxxxxxx>
• Replacing DES_ede3_cbc_encrypt with EVP API's for upgrading to openssl 3.0
  • From: "Paramashivaiah, Sunil" <Sunil.Paramashivaiah@xxxxxxxx>
• Re: Replacement for AES_set_encrypt_key and AES_encrypt to support 3.0
  • From: Dr Paul Dale <pauli@xxxxxxxxxxx>
• Replacement for AES_set_encrypt_key and AES_encrypt to support 3.0
  • From: Shivakumar Poojari <Shivakumar.Poojari@xxxxxxxx>
• CMS_SIgnedData backwards-compatibility
  • From: Zachary Lund <admin@xxxxxxxxxxxxxxxx>
• IMPLEMENT_ASN1_FUNCTIONS tutorial or help
  • From: Ken Goldman <kgoldman@xxxxxxxxxx>
• Re: Misunderstanding openssl verify
  • From: Richard Levitte <levitte@xxxxxxxxxxx>
• stunnel 60 released
  • From: Michał Trojnara via openssl-users <openssl-users@xxxxxxxxxxx>
• Re: One iOS App - 2 OpenSSL libraries.
  • From: Viktor Dukhovni <openssl-users@xxxxxxxxxxxx>
• Re: Crash seen in "OPENSSL_sk_pop_free" API
  • From: Viktor Dukhovni <openssl-users@xxxxxxxxxxxx>
• Re: One iOS App - 2 OpenSSL libraries.
  • From: "Goetzke, Arnold (A.P.)" <agoetzke@xxxxxxxx>
• Re: One iOS App - 2 OpenSSL libraries.
  • From: Viktor Dukhovni <openssl-users@xxxxxxxxxxxx>
• Re: Misunderstanding openssl verify
  • From: Viktor Dukhovni <openssl-users@xxxxxxxxxxxx>
• Re: Misunderstanding openssl verify
  • From: Ken Goldman <kgoldman@xxxxxxxxxx>
• Re: Misunderstanding openssl verify
  • From: Viktor Dukhovni <openssl-users@xxxxxxxxxxxx>
• Misunderstanding openssl verify
  • From: Ken Goldman <kgoldman@xxxxxxxxxx>
• Re: One iOS App - 2 OpenSSL libraries.
  • From: Dr Paul Dale <pauli@xxxxxxxxxxx>
• One iOS App - 2 OpenSSL libraries.
  • From: "Goetzke, Arnold (A.P.)" <agoetzke@xxxxxxxx>
• Crash seen in "OPENSSL_sk_pop_free" API
  • From: Bala Duvvuri via openssl-users <openssl-users@xxxxxxxxxxx>
• RE: How to debug ssl library in OpenSSL 1.1.1a? Thanks in advance.
  • From: "Dr. Matthias St. Pierre" <Matthias.St.Pierre@xxxxxxxxx>
• RE: Hi team, I modified openssl code and make test failed. What should I do with the failed cases. Thx in advance.
  • From: "Dr. Matthias St. Pierre" <Matthias.St.Pierre@xxxxxxxxx>
• How to debug ssl library in OpenSSL 1.1.1a? Thanks in advance.
  • From: Ma Zhenhua <mazhh@xxxxxxxxxxx>
• Re: Hi team, I modified openssl code and make test failed. What should I do with the failed cases. Thx in advance.
  • From: Dr Paul Dale <pauli@xxxxxxxxxxx>
• Hi team, I modified openssl code and make test failed. What should I do with the failed cases. Thx in advance.
  • From: Ma Zhenhua <mazhh@xxxxxxxxxxx>
• Openssl 1.1.1 - QNX support removed?
  • From: "Mishra, Ankur" <ankur.k.mishra@xxxxxxxxxx>
• Re: Crash seen in OPENSSL_sk_pop_free
  • From: Matt Caswell <matt@xxxxxxxxxxx>
• Crash seen in OPENSSL_sk_pop_free
  • From: Bala Duvvuri via openssl-users <openssl-users@xxxxxxxxxxx>
• Re: OpenSSL beta testing on Solaris and z/OS
  • From: Dennis Clarke via openssl-users <openssl-users@xxxxxxxxxxx>
• Re: In Openssl 1.1.1a, how can I force the TLS1.2 user to use the "rsa_pkcs_sha512" signature algorithm? Many thanks in advance.
  • From: Hubert Kario <hkario@xxxxxxxxxx>
• Re: OpenSSL beta testing on Solaris and z/OS
  • From: Matt Caswell <matt@xxxxxxxxxxx>
• Re: OpenSSL beta testing on Solaris and z/OS
  • From: Dennis Clarke via openssl-users <openssl-users@xxxxxxxxxxx>
• Re: In Openssl 1.1.1a, how can I force the TLS1.2 user to use the "rsa_pkcs_sha512" signature algorithm? Many thanks in advance.
  • From: Viktor Dukhovni <openssl-users@xxxxxxxxxxxx>
• Re: Deciphering a .p7f file
  • From: Jakob Bohm via openssl-users <openssl-users@xxxxxxxxxxx>
• Deciphering a .p7f file
  • From: Keine Eile <keine-eile@xxxxxxxxx>
• Re: EVP_MAX_BLOCK_LENGTH Macro for upgrading application from openssl 1.0.2 to openssl 3.0
  • From: Matt Caswell <matt@xxxxxxxxxxx>
• EVP_MAX_BLOCK_LENGTH Macro for upgrading application from openssl 1.0.2 to openssl 3.0
  • From: "Paramashivaiah, Sunil" <Sunil.Paramashivaiah@xxxxxxxx>
• In Openssl 1.1.1a, how can I force the TLS1.2 user to use the "rsa_pkcs_sha512" signature algorithm? Many thanks in advance.
  • From: Ma Zhenhua <mazhh@xxxxxxxxxxx>
• buffering/blocking in chained BIOs
  • From: samrobin via openssl-users <openssl-users@xxxxxxxxxxx>
• Re: Several _METHOD structs not marked as deprecated in 3.0.0-beta2
  • From: Reinier Torenbeek <reinier.torenbeek@xxxxxxxxx>
• Re: openssl 3.0 - id2_x509() now fails
  • From: Tomas Mraz <tomas@xxxxxxxxxxx>
• Re: openssl 3.0 - id2_x509() now fails
  • From: Ken Goldman <kgoldman@xxxxxxxxxx>
• Re: openssl 3.0 - id2_x509() now fails
  • From: Tomas Mraz <tomas@xxxxxxxxxxx>
• Several _METHOD structs not marked as deprecated in 3.0.0-beta2
  • From: Reinier Torenbeek <reinier.torenbeek@xxxxxxxxx>
• Re: openssl 3.0 - id2_x509() now fails
  • From: Ken Goldman <kgoldman@xxxxxxxxxx>
• Re: Public key from TSS2 private key with OpenSSL 3.0.0-beta2
  • From: Nestor Melo <Nestor.Melo@xxxxxxxxxxxxxx>
• Re: Public key from TSS2 private key with OpenSSL 3.0.0-beta2
  • From: Dmitry Belyavsky <beldmit@xxxxxxxxx>
• Public key from TSS2 private key with OpenSSL 3.0.0-beta2
  • From: Nestor Melo <Nestor.Melo@xxxxxxxxxxxxxx>
• openssl 3.0 - id2_x509() now fails
  • From: Ken Goldman <kgoldman@xxxxxxxxxx>
• Re: openssl 3.0 genpkey
  • From: Dr Paul Dale <pauli@xxxxxxxxxxx>
• Re: openssl 3.0 genpkey
  • From: Dr Paul Dale <pauli@xxxxxxxxxxx>
• openssl 3.0 genpkey
  • From: Ken Goldman <kgoldman@xxxxxxxxxx>
• Re: CMS_sign/CMS_final streaming
  • From: Dirk-Willem van Gulik <dirkx@xxxxxxxxxxxxxx>
• Re: OpenSSL beta testing on Solaris and z/OS
  • From: Dr Paul Dale <pauli@xxxxxxxxxxx>
• Re: CMS_sign/CMS_final streaming
  • From: Michael Richardson <mcr@xxxxxxxxxxxx>
• CMS_sign/CMS_final streaming
  • From: Dirk-Willem van Gulik <dirkx@xxxxxxxxxxxxxx>
• OpenSSL beta testing on Solaris and z/OS
  • From: Dennis Clarke via openssl-users <openssl-users@xxxxxxxxxxx>
• enable/disable algorithms at build time
  • From: Lee Hamel via openssl-users <openssl-users@xxxxxxxxxxx>
• Re: OpenSSL Beta 2, report of successful migration
  • From: "Angus Robertson - Magenta Systems Ltd" <angus@xxxxxxxxxxxx>
• OpenSSL 3.x binaries naming convention (on Windows)
  • From: Olivier Mascia via openssl-users <openssl-users@xxxxxxxxxxx>
• Re: OpenSSL Beta 2, report of successful migration
  • From: Olivier Mascia via openssl-users <openssl-users@xxxxxxxxxxx>
• Re: OpenSSL Beta 2, report of successful migration
  • From: Olivier Mascia via openssl-users <openssl-users@xxxxxxxxxxx>
• Re: OpenSSL Beta 2, report of successful migration
  • From: Dr Paul Dale <pauli@xxxxxxxxxxx>
• Re: OpenSSL Beta 2, report of successful migration
  • From: "Angus Robertson - Magenta Systems Ltd" <angus@xxxxxxxxxxxx>
• Re: OpenSSL Beta 2, report of successful migration
  • From: Olivier Mascia via openssl-users <openssl-users@xxxxxxxxxxx>
• Re: OpenSSL Beta 2, report of successful migration
  • From: "Angus Robertson - Magenta Systems Ltd" <angus@xxxxxxxxxxxx>
• OpenSSL Beta 2, report of successful migration
  • From: Olivier Mascia via openssl-users <openssl-users@xxxxxxxxxxx>
• Re: EVP_MD_CTX_free documentation
  • From: Ken Goldman <kgoldman@xxxxxxxxxx>
• Algorithms Used for openssl- pkcs12
  • From: "Malkin, Vlad" <Vlad.Malkin@xxxxxxxxxx>
• Re: EVP_MD_CTX_free documentation
  • From: Matt Caswell <matt@xxxxxxxxxxx>
• EVP_MD_CTX_free documentation
  • From: Ken Goldman <kgoldman@xxxxxxxxxx>
• Re: Accessing bignums of a RSA key with OpenSSL 3.0?
  • From: Matt Caswell <matt@xxxxxxxxxxx>
• Re: Accessing bignums of a RSA key with OpenSSL 3.0?
  • From: Olivier Mascia via openssl-users <openssl-users@xxxxxxxxxxx>
• Re: Accessing bignums of a RSA key with OpenSSL 3.0?
  • From: Dr Paul Dale <pauli@xxxxxxxxxxx>
• Accessing bignums of a RSA key with OpenSSL 3.0?
  • From: Olivier Mascia via openssl-users <openssl-users@xxxxxxxxxxx>
• OpenSSL version VERSION published
  • From: Matt Caswell <matt@xxxxxxxxxxx>
• Re: Wrong signature type error trying to connect to gibs.earthdata.nasa.gov on Ubuntu 20.04
  • From: Andrea Giudiceandrea via openssl-users <openssl-users@xxxxxxxxxxx>
• OpenSSL 3.0.0 beta1 test results on Sun/Oracle Solaris SPARC64 ( Fujitsu )
  • From: Dennis Clarke via openssl-users <openssl-users@xxxxxxxxxxx>
• Re: OpenSSL 3.0.0 beta1 link issues on Solaris 10
  • From: Dennis Clarke via openssl-users <openssl-users@xxxxxxxxxxx>
• Re: OpenSSL 3.0.0 beta1 link issues on Solaris 10
  • From: Dr Paul Dale <pauli@xxxxxxxxxxx>
• OpenSSL 3.0.0 beta1 with a vast number of failures
  • From: Dennis Clarke via openssl-users <openssl-users@xxxxxxxxxxx>
• OpenSSL 3.0.0 beta1 link issues on Solaris 10
  • From: Dennis Clarke via openssl-users <openssl-users@xxxxxxxxxxx>
• Re: Parsing subject/issuer strings in X.509
  • From: Philip Prindeville <philipp_subx@xxxxxxxxxxxxxxxxxxxxx>
• Re: Parsing subject/issuer strings in X.509
  • From: Philip Prindeville <philipp_subx@xxxxxxxxxxxxxxxxxxxxx>
• Re: Parsing subject/issuer strings in X.509
  • From: Philip Prindeville <philipp_subx@xxxxxxxxxxxxxxxxxxxxx>
• Re: Parsing subject/issuer strings in X.509
  • From: Viktor Dukhovni <openssl-users@xxxxxxxxxxxx>
• Dynamic CRL not working when signed by intermediate CA
  • From: Venkata Mallikarjunarao Kosuri via openssl-users <openssl-users@xxxxxxxxxxx>
• Re: Parsing subject/issuer strings in X.509
  • From: David von Oheimb <dev@xxxxxxxx>
• Re: Parsing subject/issuer strings in X.509
  • From: Viktor Dukhovni <openssl-users@xxxxxxxxxxxx>
• Parsing subject/issuer strings in X.509
  • From: Philip Prindeville <philipp_subx@xxxxxxxxxxxxxxxxxxxxx>
• iOS app attest server side
  • From: Philip Prindeville <philipp_subx@xxxxxxxxxxxxxxxxxxxxx>
• Re: Verifying Android hardware attestation certificates with OpenSSL
  • From: Philip Prindeville <philipp_subx@xxxxxxxxxxxxxxxxxxxxx>
• Re: Question on "unsupported certificate purpose" error when trying to read the certificate on the web server
  • From: Kyle Hamilton <aerowolf@xxxxxxxxx>
• Re: Question on "unsupported certificate purpose" error when trying to read the certificate on the web server
  • From: Thejus Prabhu <tprabhu1989@xxxxxxxxx>
• Re: Question on "unsupported certificate purpose" error when trying to read the certificate on the web server
  • From: Viktor Dukhovni <openssl-users@xxxxxxxxxxxx>
• Question on "unsupported certificate purpose" error when trying to read the certificate on the web server
  • From: Thejus Prabhu <tprabhu1989@xxxxxxxxx>
• Directory structure ( SSL/TLS/HTTPS )
  • From: Webstrucs <webstrucs@xxxxxxxxx>
• Re: verify ocsp manually
  • From: Dirk-Willem van Gulik <dirkx@xxxxxxxxxxxxxx>
• Re: verify ocsp manually
  • From: Gaardiolor <gaardiolor@xxxxxxxxx>
• Re: openssl ciphers
  • From: Viktor Dukhovni <openssl-users@xxxxxxxxxxxx>
• openssl ciphers
  • From: Webstrucs <webstrucs@xxxxxxxxx>
• verify ocsp manually
  • From: Gaardiolor <gaardiolor@xxxxxxxxx>
• Re: Decrypting app payload in wireshark
  • From: Claude Robitaille <claude-robitaille@xxxxxxxxxxx>
• Decrypting app payload in wireshark
  • From: Claude Robitaille <claude-robitaille@xxxxxxxxxxx>
• Re: query on key usage OIDs
  • From: Viktor Dukhovni <openssl-users@xxxxxxxxxxxx>
• OpenSSL regression when a servername callback is set
  • From: Dmitry Belyavsky <beldmit@xxxxxxxxx>
• Re: query on key usage OIDs
  • From: Jakob Bohm via openssl-users <openssl-users@xxxxxxxxxxx>
• Re: query on key usage OIDs
  • From: Kyle Hamilton <aerowolf@xxxxxxxxx>
• Re: query on key usage OIDs
  • From: Viktor Dukhovni <openssl-users@xxxxxxxxxxxx>
• query on key usage OIDs
  • From: SIMON BABY <simonkbaby@xxxxxxxxx>
• Re: RSA_set0_key() equivalent for 3.0.0
  • From: William Roberts <bill.c.roberts@xxxxxxxxx>
• Re: RSA_set0_key() equivalent for 3.0.0
  • From: Ken Goldman <kgoldman@xxxxxxxxxx>
• Re: RSA_set0_key() equivalent for 3.0.0
  • From: William Roberts <bill.c.roberts@xxxxxxxxx>
• Re: RSA_set0_key() equivalent for 3.0.0
  • From: Ken Goldman <kgoldman@xxxxxxxxxx>
• Re: SSL_connect with TLS 1.3 and client Certificates
  • From: Christian Schmidt <schmidt@xxxxxxxxx>
• Re: SSL_connect with TLS 1.3 and client Certificates
  • From: Matt Caswell <matt@xxxxxxxxxxx>
• Re: EVP_MAC_init - specify the hash algorithm
  • From: Thomas Dwyer III <tomiii@xxxxxxxxxx>
• Re: EVP_MAC_init - specify the hash algorithm
  • From: Dr Paul Dale <pauli@xxxxxxxxxxx>
• Re: EVP_MAC_init - specify the hash algorithm
  • From: Thomas Dwyer III <tomiii@xxxxxxxxxx>
• Re: RSA_set0_key() equivalent for 3.0.0
  • From: Matt Caswell <matt@xxxxxxxxxxx>
• Re: RSA_set0_key() equivalent for 3.0.0
  • From: William Roberts <bill.c.roberts@xxxxxxxxx>
• Re: RSA_set0_key() equivalent for 3.0.0
  • From: Sahana Prasad <sahana@xxxxxxxxxx>
• Re: RSA_set0_key() equivalent for 3.0.0
  • From: Nicola Tuveri <nic.tuv@xxxxxxxxx>
• RSA_set0_key() equivalent for 3.0.0
  • From: Ken Goldman <kgoldman@xxxxxxxxxx>
• Re: EVP_MAC_init - specify the hash algorithm
  • From: Ken Goldman <kgoldman@xxxxxxxxxx>
• Re: EVP_MAC_init - specify the hash algorithm
  • From: Matt Caswell <matt@xxxxxxxxxxx>
• SSL_connect with TLS 1.3 and client Certificates
  • From: Christian Schmidt <schmidt@xxxxxxxxx>
• EVP_MAC_init - specify the hash algorithm
  • From: Ken Goldman <kgoldman@xxxxxxxxxx>
• Re: [openssl CMP with pkcs11 engine]
  • From: David von Oheimb <dev@xxxxxxxx>
• Re: CMP mock server OldCertID check behavior
  • From: David von Oheimb <dev@xxxxxxxx>
• Re: Time for OpenSSL 1.1.1l?
  • From: Matt Caswell <matt@xxxxxxxxxxx>
• Re: installing OpenSSL 1.1.1 on RedHat 6.x
  • From: Hubert Kario <hkario@xxxxxxxxxx>
• Re: installing OpenSSL 1.1.1 on RedHat 6.x
  • From: Jan Just Keijser <janjust@xxxxxxxxx>
• s_server: unexpected behavior when using "-brief" option
  • From: Yaroslav Lelkin <ylelkin1@xxxxxxxxx>
• RE: installing OpenSSL 1.1.1 on RedHat 6.x
  • From: "Tim Culhane" <tim.j.culhane@xxxxxxxxx>
• Re: installing OpenSSL 1.1.1 on RedHat 6.x
  • From: Viktor Dukhovni <openssl-users@xxxxxxxxxxxx>
• RE: installing OpenSSL 1.1.1 on RedHat 6.x
  • From: "Tim Culhane" <tim.j.culhane@xxxxxxxxx>
• RE: installing OpenSSL 1.1.1 on RedHat 6.x
  • From: "Floodeenjr, Thomas" <thomas_floodeenjr@xxxxxxxxxx>
• RE: installing OpenSSL 1.1.1 on RedHat 6.x
  • From: "Tim Culhane" <tim.j.culhane@xxxxxxxxx>
• Re: installing OpenSSL 1.1.1 on RedHat 6.x
  • From: Viktor Dukhovni <openssl-users@xxxxxxxxxxxx>
• RE: installing OpenSSL 1.1.1 on RedHat 6.x
  • From: "Floodeenjr, Thomas" <thomas_floodeenjr@xxxxxxxxxx>
• installing OpenSSL 1.1.1 on RedHat 6.x
  • From: "Tim Culhane" <tim.j.culhane@xxxxxxxxx>
• CMP mock server OldCertID check behavior
  • From: Petr Gotthard <petr.gotthard@xxxxxxxxxxxx>
• Re: CNG engine on GitHub
  • From: Reinier Torenbeek <reinier.torenbeek@xxxxxxxxx>
• Time for OpenSSL 1.1.1l?
  • From: "Short, Todd via openssl-users" <openssl-users@xxxxxxxxxxx>
• Re: Need help in removing secp521r1 from openssl-1.1.1g and adding TLS_GREASE_BA cipher.
  • From: Mark Hack <markhack@xxxxxxxxxxxx>
• Re: How to simulate "TLS 1.3 Session Resumption" through OpenSSL tools?
  • From: Nan Xiao <xiaonan830818@xxxxxxxxx>
• Re: CNG engine on GitHub
  • From: Selva Nair <selva.nair@xxxxxxxxx>
• Re: CNG engine on GitHub
  • From: Matt Caswell <matt@xxxxxxxxxxx>
• Re: CNG engine on GitHub
  • From: Matt Caswell <matt@xxxxxxxxxxx>
• Re: CNG engine on GitHub
  • From: Reinier Torenbeek <reinier.torenbeek@xxxxxxxxx>
• Re: Need help in removing secp521r1 from openssl-1.1.1g and adding TLS_GREASE_BA cipher.
  • From: Matt Caswell <matt@xxxxxxxxxxx>
• Re: OPenssl 3 Beta 1
  • From: The Doctor <doctor@xxxxxxxxxxxxxxxxx>
• Re: OPenssl 3 Beta 1
  • From: Tomas Mraz <tomas@xxxxxxxxxxx>
• Re: CNG engine on GitHub
  • From: Reinier Torenbeek <reinier.torenbeek@xxxxxxxxx>
• OPenssl 3 Beta 1
  • From: The Doctor <doctor@xxxxxxxxxxxxxxxxx>
• Re: CNG engine on GitHub
  • From: Selva Nair <selva.nair@xxxxxxxxx>
• Re: Need help in removing secp521r1 from openssl-1.1.1g and adding TLS_GREASE_BA cipher.
  • From: vinod mg <vinod9987@xxxxxxxxx>
• Re: OpenSSL CNG engine on GitHub
  • From: Reinier Torenbeek <reinier.torenbeek@xxxxxxxxx>
• Re: CNG engine on GitHub
  • From: Reinier Torenbeek <reinier.torenbeek@xxxxxxxxx>
• Re: CNG engine on GitHub
  • From: Richard Levitte <levitte@xxxxxxxxxxx>
• Re: Need help in removing secp521r1 from openssl-1.1.1g and adding TLS_GREASE_BA cipher.
  • From: Matt Caswell <matt@xxxxxxxxxxx>
• Re: OpenSSL CNG engine on GitHub
  • From: David von Oheimb <dev@xxxxxxxx>
• Re: How to simulate "TLS 1.3 Session Resumption" through OpenSSL tools?
  • From: Matt Caswell <matt@xxxxxxxxxxx>
• How to simulate "TLS 1.3 Session Resumption" through OpenSSL tools?
  • From: Nan Xiao <xiaonan830818@xxxxxxxxx>
• Re: CNG engine on GitHub
  • From: Matt Caswell <matt@xxxxxxxxxxx>
• Re: [EXTERNAL] Re: GNU Make erroring on makefile
  • From: David von Oheimb <dev@xxxxxxxx>
• Re: CNG engine on GitHub
  • From: Reinier Torenbeek <reinier.torenbeek@xxxxxxxxx>
• Re: email notice [was: Not getting some macros for FIPS]
  • From: Jakob Bohm via openssl-users <openssl-users@xxxxxxxxxxx>
• Re: CNG engine on GitHub
  • From: Matt Caswell <matt@xxxxxxxxxxx>
• CNG engine on GitHub
  • From: Reinier Torenbeek <reinier.torenbeek@xxxxxxxxx>
• RE: Compilation error using OpenSSL 1.1.1i
  • From: Michael Wojcik <Michael.Wojcik@xxxxxxxxxxxxxx>
• RE: [EXTERNAL] Re: GNU Make erroring on makefile
  • From: Joe Carroll <joe.carroll.hrg2@xxxxxxxxxxxxx>
• Re: [EXTERNAL] Re: GNU Make erroring on makefile
  • From: Matt Caswell <matt@xxxxxxxxxxx>
• RE: [EXTERNAL] Re: GNU Make erroring on makefile
  • From: Joe Carroll <joe.carroll.hrg2@xxxxxxxxxxxxx>
• Re: GNU Make erroring on makefile
  • From: Richard Levitte <levitte@xxxxxxxxxxx>
• GNU Make erroring on makefile
  • From: Joe Carroll <joe.carroll.hrg2@xxxxxxxxxxxxx>
• Re: client certificate error
  • From: Jan Just Keijser <janjust@xxxxxxxxx>
• Re: Need help in removing secp521r1 from openssl-1.1.1g and adding TLS_GREASE_BA cipher.
  • From: vinod mg <vinod9987@xxxxxxxxx>
• Re: openssl 1.1.1k: missing d2i_X509 function prototype
  • From: Viktor Dukhovni <openssl-users@xxxxxxxxxxxx>
• Re: openssl 1.1.1k: missing d2i_X509 function prototype
  • From: Konstantin Boyandin via openssl-users <openssl-users@xxxxxxxxxxx>
• Re: openssl 1.1.1k: missing d2i_X509 function prototype
  • From: Viktor Dukhovni <openssl-users@xxxxxxxxxxxx>
• openssl 1.1.1k: missing d2i_X509 function prototype
  • From: Konstantin Boyandin via openssl-users <openssl-users@xxxxxxxxxxx>
• Compilation error using OpenSSL 1.1.1i
  • From: Jayalakshmi bhat <bhat.jayalakshmi@xxxxxxxxx>
• Re: client certificate error
  • From: Paulo Wollny <ppjjvvww@xxxxxxxxx>
• Re: Compilation issues
  • From: Jan Just Keijser <janjust@xxxxxxxxx>
• Re: client certificate error
  • From: Jan Just Keijser <janjust@xxxxxxxxx>
• client certificate error
  • From: Paulo Wollny <ppjjvvww@xxxxxxxxx>
• Re: How did I break this signature library?
  • From: Sage Gerard <sage@xxxxxxxxxxxxxx>
• Re: Compilation issues
  • From: david raingeard <david.raingeard@xxxxxxxxx>
• Re: Compilation issues
  • From: Jan Just Keijser <janjust@xxxxxxxxx>
• Need help in removing secp521r1 from openssl-1.1.1g and adding TLS_GREASE_BA cipher.
  • From: vinod mg <vinod9987@xxxxxxxxx>
• Re: SM2/3/4 algorithm based TLS connections
  • From: Kevin Lengauer <kevin.lengauer@xxxxxxxxxx>
• Re: SM2/3/4 algorithm based TLS connections
  • From: Matt Caswell <matt@xxxxxxxxxxx>
• Compilation issues
  • From: david raingeard <david.raingeard@xxxxxxxxx>
• SM2/3/4 algorithm based TLS connections
  • From: Kevin Lengauer <kevin.lengauer@xxxxxxxxxx>
• Re: "Expecting: ANY PRIVATE KEY"
  • From: Mariano Gedisman-Córdoba via openssl-users <openssl-users@xxxxxxxxxxx>
• How did I break this signature library?
  • From: Sage Gerard <sage@xxxxxxxxxxxxxx>
• RE: "Expecting: ANY PRIVATE KEY"
  • From: "Michel" <michel.sales@xxxxxxxxx>
• "Expecting: ANY PRIVATE KEY"
  • From: Mariano Gedisman-Córdoba via openssl-users <openssl-users@xxxxxxxxxxx>
• RE: [EXTERNAL] RE: Can OpenSSL handle multiple authentication mechanisms on the same SSL context?
  • From: "Revestual, Raffy [AUTOSOL/PSS/MNL]" <Raffy.Revestual@xxxxxxxxxxx>
• RE: Can OpenSSL handle multiple authentication mechanisms on the same SSL context?
  • From: "Michel" <michel.sales@xxxxxxx>
• email notice [was: Not getting some macros for FIPS]
  • From: Richard Levitte <levitte@xxxxxxxxxxx>
• Re: openssl 3.0 beta versus actual
  • From: Matt Caswell <matt@xxxxxxxxxxx>
• openssl 3.0 beta versus actual
  • From: "Sandeep Umesh" <sanumesh@xxxxxxxxxx>
• openssl 1.1.1 debugging
  • From: david raingeard <david.raingeard@xxxxxxxxx>
• Re: openssl 1.1.1k on solaris 2.6 sparc
  • From: Jeff Wieland <wieland@xxxxxxxxxx>
• RE: openssl 1.1.1k on solaris 2.6 sparc
  • From: Michael Wojcik <Michael.Wojcik@xxxxxxxxxxxxxx>
• openssl 1.1.1k on solaris 2.6 sparc
  • From: david raingeard <david.raingeard@xxxxxxxxx>
• Re: 3.0 beta1 feedback about (shared) library names
  • From: Richard Levitte <levitte@xxxxxxxxxxx>
• Re: Not getting some macros for FIPS
  • From: Tomas Mraz <tomas@xxxxxxxxxxx>
• Not getting some macros for FIPS
  • From: "Kumar Mishra, Sanjeev" <Sanjeev.Kumar-Mishra@xxxxxxxx>
• Re: 3.0 beta1 feedback about (shared) library names
  • From: Richard Levitte <levitte@xxxxxxxxxxx>
• Re: How to query current settings/policies?
  • From: "Mark H. Wood" <mwood@xxxxxxxxx>
• Re: How to query current settings/policies?
  • From: Tomas Mraz <tomas@xxxxxxxxxxx>
• How to query current settings/policies?
  • From: Thomas Deutschmann <whissi@xxxxxxxxxx>
• RE: [EXTERNAL] Re: Can OpenSSL handle multiple authentication mechanisms on the same SSL context?
  • From: "Revestual, Raffy [AUTOSOL/PSS/MNL]" <Raffy.Revestual@xxxxxxxxxxx>
• Re: Can OpenSSL handle multiple authentication mechanisms on the same SSL context?
  • From: Benjamin Kaduk via openssl-users <openssl-users@xxxxxxxxxxx>
• Can OpenSSL handle multiple authentication mechanisms on the same SSL context?
  • From: "Revestual, Raffy [AUTOSOL/PSS/MNL]" <Raffy.Revestual@xxxxxxxxxxx>
• Re: 3.0 beta1 feedback about (shared) library names
  • From: Benjamin Kaduk via openssl-users <openssl-users@xxxxxxxxxxx>
• 3.0 beta1 feedback about (shared) library names
  • From: Michael Richardson <mcr@xxxxxxxxxxxx>
• Re: reg: question about SSL server cert verification
  • From: Viktor Dukhovni <openssl-users@xxxxxxxxxxxx>
• Re: reg: question about SSL server cert verification
  • From: Jakob Bohm via openssl-users <openssl-users@xxxxxxxxxxx>
• Re: OpenSSL version 3.0.0-beta1 published
  • From: Dr Paul Dale <pauli@xxxxxxxxxxx>
• RE: reg: question about SSL server cert verification
  • From: Michael Wojcik <Michael.Wojcik@xxxxxxxxxxxxxx>
• Re: reg: question about SSL server cert verification
  • From: Viktor Dukhovni <openssl-users@xxxxxxxxxxxx>
• Re: OpenSSL version 3.0.0-beta1 published
  • From: Jan Just Keijser <janjust@xxxxxxxxx>
• Re: OpenSSL version 3.0.0-beta1 published
  • From: Steffen Nurpmeso <steffen@xxxxxxxxxx>
• Re: reg: question about SSL server cert verification
  • From: Jakob Bohm via openssl-users <openssl-users@xxxxxxxxxxx>
• Re: reg: question about SSL server cert verification
  • From: Viktor Dukhovni <openssl-users@xxxxxxxxxxxx>
• RE: reg: question about SSL server cert verification
  • From: Michael Wojcik <Michael.Wojcik@xxxxxxxxxxxxxx>
• Re: reg: question about SSL server cert verification
  • From: Jakob Bohm via openssl-users <openssl-users@xxxxxxxxxxx>
• reg: question about SSL server cert verification
  • From: sami0l via openssl-users <openssl-users@xxxxxxxxxxx>
• Re: [OffTopic] PAM
  • From: Steffen Nurpmeso <steffen@xxxxxxxxxx>
• Re: Blog post
  • From: Matt Caswell <matt@xxxxxxxxxxx>
• Re: Blog post
  • From: Ethan Rahn <ethan.rahn@xxxxxxxxx>
• Cleaning up async jobs
  • From: Arran Cudbard-Bell <a.cudbardb@xxxxxxxxxxxxxx>
• [OffTopic] PAM
  • From: Tomas Mraz <tomas@xxxxxxxxxxx>
• Re: OpenSSL version 3.0.0-beta1 published
  • From: Steffen Nurpmeso <steffen@xxxxxxxxxx>
• Re: OpenSSL version 3.0.0-beta1 published
  • From: Matt Caswell <matt@xxxxxxxxxxx>
• Re: OpenSSL version 3.0.0-beta1 published
  • From: Steffen Nurpmeso <steffen@xxxxxxxxxx>
• Re: openssl verify question
  • From: Jakob Bohm via openssl-users <openssl-users@xxxxxxxxxxx>
• Re: openssl verify question
  • From: Viktor Dukhovni <openssl-users@xxxxxxxxxxxx>
• Blog post
  • From: Matt Caswell <matt@xxxxxxxxxxx>
• OpenSSL version 3.0.0-beta1 published
  • From: Matt Caswell <matt@xxxxxxxxxxx>
• Re: openssl verify question
  • From: Jan Just Keijser <janjust@xxxxxxxxx>
• Re: using the DSA signature algorithm of OpenSSL
  • From: Elmar Stellnberger via openssl-users <openssl-users@xxxxxxxxxxx>
• using the DSA signature algorithm of OpenSSL
  • From: Elmar Stellnberger via openssl-users <openssl-users@xxxxxxxxxxx>
• Re: Not getting some macros for setting some BIO commands
  • From: Tomas Mraz <tomas@xxxxxxxxxxx>
• Not getting some macros for setting some BIO commands
  • From: "Kumar Mishra, Sanjeev" <Sanjeev.Kumar-Mishra@xxxxxxxx>
• openssl verify question
  • From: Gaardiolor <gaardiolor@xxxxxxxxx>
• Using keylog_callback with LD_PRELOAD
  • From: Kevin Grigorenko <kevin@xxxxxxxxxxxxxxxxx>
• Re: enforce ALPN overlap?
  • From: Tomas Mraz <tomas@xxxxxxxxxxx>
• Re: enforce ALPN overlap?
  • From: Jan Schaumann via openssl-users <openssl-users@xxxxxxxxxxx>
• enforce ALPN overlap?
  • From: Jan Schaumann via openssl-users <openssl-users@xxxxxxxxxxx>
• Re: What's the rationale behind ssl-trace not being built by default?
  • From: Arran Cudbard-Bell <a.cudbardb@xxxxxxxxxxxxxx>
• Best practice for distributions that freeze OpenSSL versions and backports
  • From: Jakob Bohm via openssl-users <openssl-users@xxxxxxxxxxx>
• Re: Compile opensslß1.1.1k on CentOS8
  • From: Hubert Kario <hkario@xxxxxxxxxx>
• Re: What's the rationale behind ssl-trace not being built by default?
  • From: Hubert Kario <hkario@xxxxxxxxxx>
• Re: Openssl FIPS 186-4 Support
  • From: Illuri Pramod <pramod.illuri@xxxxxxxxx>
• Openssl FIPS 186-4 Support
  • From: Illuri Pramod <pramod.illuri@xxxxxxxxx>
• Checking a single signature from several in S/MIME
  • From: Laurent Blume via openssl-users <openssl-users@xxxxxxxxxxx>
• Re: Re: Compile opensslß1.1.1k on CentOS8
  • From: Hal Murray <halmurray+openssl@xxxxxxxxx>
• Re: Compile opensslß1.1.1k on CentOS8
  • From: Jan Just Keijser <janjust@xxxxxxxxx>
• Re: What's the rationale behind ssl-trace not being built by default?
  • From: Matt Caswell <matt@xxxxxxxxxxx>
• Re: What's the rationale behind ssl-trace not being built by default?
  • From: Arran Cudbard-Bell <a.cudbardb@xxxxxxxxxxxxxx>
• Re: What's the rationale behind ssl-trace not being built by default?
  • From: Matt Caswell <matt@xxxxxxxxxxx>
• What's the rationale behind ssl-trace not being built by default?
  • From: Arran Cudbard-Bell <a.cudbardb@xxxxxxxxxxxxxx>
• Compile opensslß1.1.1k on CentOS8
  • From: Lothar Belle <lothar.belle@xxxxxxxxx>
• RE: FW: X509_verify_cert() rejects all trusted certs with "default" X509_VERIFY_PARAM
  • From: Michael Wojcik <Michael.Wojcik@xxxxxxxxxxxxxx>
• Re: FW: X509_verify_cert() rejects all trusted certs with "default" X509_VERIFY_PARAM
  • From: Jakob Bohm via openssl-users <openssl-users@xxxxxxxxxxx>
• ODP: CSR creation using pkcs11 dynamic engine
  • From: Piotr Lobacz <piotr.lobacz@xxxxxxxxxxxx>
• ODP: CSR creation using pkcs11 dynamic engine
  • From: Piotr Lobacz <piotr.lobacz@xxxxxxxxxxxx>
• ODP: CSR creation using pkcs11 dynamic engine
  • From: Piotr Lobacz <piotr.lobacz@xxxxxxxxxxxx>
• ODP: CSR creation using pkcs11 dynamic engine
  • From: Piotr Lobacz <piotr.lobacz@xxxxxxxxxxxx>
• Re: CSR creation using pkcs11 dynamic engine
  • From: Selva Nair <selva.nair@xxxxxxxxx>
• Re: CSR creation using pkcs11 dynamic engine
  • From: Selva Nair <selva.nair@xxxxxxxxx>
• ODP: CSR creation using pkcs11 dynamic engine
  • From: Piotr Lobacz <piotr.lobacz@xxxxxxxxxxxx>
• RE: Why can't we get a proper installation method to keep OpenSSL at the latest revision for Linux?
  • From: Michael McKenney via openssl-users <openssl-users@xxxxxxxxxxx>
• Re: Why can't we get a proper installation method to keep OpenSSL at the latest revision for Linux?
  • From: Jan Just Keijser <janjust@xxxxxxxxx>
• RE: Why can't we get a proper installation method to keep OpenSSL at the latest revision for Linux?
  • From: Michael McKenney via openssl-users <openssl-users@xxxxxxxxxxx>
• RE: Why can't we get a proper installation method to keep OpenSSL at the latest revision for Linux?
  • From: Michael McKenney via openssl-users <openssl-users@xxxxxxxxxxx>
• Re: Why can't we get a proper installation method to keep OpenSSL at the latest revision for Linux?
  • From: Mauricio Tavares <raubvogel@xxxxxxxxx>
• Re: Why can't we get a proper installation method to keep OpenSSL at the latest revision for Linux?
  • From: Tomas Mraz <tomas@xxxxxxxxxxx>
• RE: Why can't we get a proper installation method to keep OpenSSL at the latest revision for Linux?
  • From: Michael McKenney via openssl-users <openssl-users@xxxxxxxxxxx>
• Re: Why can't we get a proper installation method to keep OpenSSL at the latest revision for Linux?
  • From: Jan Just Keijser <janjust@xxxxxxxxx>
• Re: Why can't we get a proper installation method to keep OpenSSL at the latest revision for Linux?
  • From: d0 <public@xxxxxxxxx>
• Why can't we get a proper installation method to keep OpenSSL at the latest revision for Linux?
  • From: Michael McKenney <mike.mckenney@xxxxxxxxxxxxxxxx>
• ODP: CSR creation using pkcs11 dynamic engine
  • From: Piotr Lobacz <piotr.lobacz@xxxxxxxxxxxx>
• Re: X509_verify_cert() rejects all trusted certs with "default" X509_VERIFY_PARAM
  • From: Viktor Dukhovni <openssl-users@xxxxxxxxxxxx>
• FW: X509_verify_cert() rejects all trusted certs with "default" X509_VERIFY_PARAM
  • From: Michael Wojcik <Michael.Wojcik@xxxxxxxxxxxxxx>
• ODP: CSR creation using pkcs11 dynamic engine
  • From: Piotr Lobacz <piotr.lobacz@xxxxxxxxxxxx>
• Re: CSR creation using pkcs11 dynamic engine
  • From: Selva Nair <selva.nair@xxxxxxxxx>
• ODP: CSR creation using pkcs11 dynamic engine
  • From: Piotr Lobacz <piotr.lobacz@xxxxxxxxxxxx>
• Re: X509_verify_cert() rejects all trusted certs with "default" X509_VERIFY_PARAM
  • From: Tomas Mraz <tomas@xxxxxxxxxxx>
• X509_verify_cert() rejects all trusted certs with "default" X509_VERIFY_PARAM
  • From: Graham Leggett via openssl-users <openssl-users@xxxxxxxxxxx>
• CSR creation using pkcs11 dynamic engine
  • From: Piotr Lobacz <piotr.lobacz@xxxxxxxxxxxx>
• Re: How to set the different parameters of X509_STORE_CTX structure.
  • From: Jan Just Keijser <janjust@xxxxxxxxx>
• ODP: dynamic engine load
  • From: Piotr Lobacz <piotr.lobacz@xxxxxxxxxxxx>
• Re: dynamic engine load
  • From: Selva Nair <selva.nair@xxxxxxxxx>
• ODP: dynamic engine load
  • From: Piotr Lobacz <piotr.lobacz@xxxxxxxxxxxx>
• ODP: dynamic engine load
  • From: Piotr Lobacz <piotr.lobacz@xxxxxxxxxxxx>
• Re: dynamic engine load
  • From: Selva Nair <selva.nair@xxxxxxxxx>
• ODP: dynamic engine load
  • From: Piotr Lobacz <piotr.lobacz@xxxxxxxxxxxx>
• dynamic engine load
  • From: Piotr Lobacz <piotr.lobacz@xxxxxxxxxxxx>
• How to set the different parameters of X509_STORE_CTX structure.
  • From: "Kumar Mishra, Sanjeev" <Sanjeev.Kumar-Mishra@xxxxxxxx>
• ODP: CSR generation using pkcs11 token engine from C# code
  • From: Piotr Lobacz <piotr.lobacz@xxxxxxxxxxxx>
• RE: CSR generation using pkcs11 token engine from C# code
  • From: Michael McKenney <mike.mckenney@xxxxxxxxxxxxxxxx>
• ODP: CSR generation using pkcs11 token engine from C# code
  • From: Piotr Lobacz <piotr.lobacz@xxxxxxxxxxxx>
• RE: I installed Openssl 1.1.1k and Ubuntu 20.04 did an upgrade and reverted it back to 1.1.1f. Usually Ubuntu upgrades don’t break it.
  • From: Michael McKenney <mike.mckenney@xxxxxxxxxxxxxxxx>
• RE: CSR generation using pkcs11 token engine from C# code
  • From: Michael McKenney <mike.mckenney@xxxxxxxxxxxxxxxx>
• CSR generation using pkcs11 token engine from C# code
  • From: Piotr Lobacz <piotr.lobacz@xxxxxxxxxxxx>
• Re: Support for ECDH One-pass in "openssl cms enc"
  • From: Henning Krause via openssl-users <openssl-users@xxxxxxxxxxx>
• List ECs (elliptic curves) in Cipher suites
  • From: Kaushal Shriyan <kaushalshriyan@xxxxxxxxx>
• Support for ECDH One-pass in "openssl cms enc"
  • From: Henning Krause via openssl-users <openssl-users@xxxxxxxxxxx>
• Re: I installed Openssl 1.1.1k and Ubuntu 20.04 did an upgrade and reverted it back to 1.1.1f. Usually Ubuntu upgrades don’t break it.
  • From: Jakob Bohm via openssl-users <openssl-users@xxxxxxxxxxx>
• Secure Heap Usage for EC private key
  • From: "Barry Fussell \(bfussell\) via openssl-users" <openssl-users@xxxxxxxxxxx>
• Re: I installed Openssl 1.1.1k and Ubuntu 20.04 did an upgrade and reverted it back to 1.1.1f. Usually Ubuntu upgrades don’t break it.
  • From: Jakob Bohm via openssl-users <openssl-users@xxxxxxxxxxx>
• OpenSSL version 3.0.0-alpha17 published
  • From: OpenSSL <openssl@xxxxxxxxxxx>
• I installed Openssl 1.1.1k and Ubuntu 20.04 did an upgrade and reverted it back to 1.1.1f. Usually Ubuntu upgrades don’t break it.
  • From: Michael McKenney <mike.mckenney@xxxxxxxxxxxxxxxx>
• Which header file I need to include for X509 OCSP Certificate Verification
  • From: "Kumar Mishra, Sanjeev" <Sanjeev.Kumar-Mishra@xxxxxxxx>
• Re: Replay HTTP traffic
  • From: Matt Caswell <matt@xxxxxxxxxxx>
• Replay HTTP traffic
  • From: Григорий Сморкалов <g.smorkalov@xxxxxxxxxxxxx>
• Migrating from cryptlib to openssl
  • From: Pramoth Murali <pramothmurali@xxxxxxxxx>
• SM3WithSM2 Certificate
  • From: John Jiang <john.sha.jiang@xxxxxxxxx>
• Re: SHA digest differences in version 1.0 and 1.1.1
  • From: Matt Caswell <matt@xxxxxxxxxxx>
• SHA digest differences in version 1.0 and 1.1.1
  • From: openssl.org@xxxxxxxxxxxxxx
• RE: What's different between RSASSA and RSAPSS padding mode?
  • From: "Dr. Matthias St. Pierre" <Matthias.St.Pierre@xxxxxxxxx>
• RE: What's different between RSASSA and RSAPSS padding mode?
  • From: "Dr. Matthias St. Pierre" <Matthias.St.Pierre@xxxxxxxxx>
• What's different between RSASSA and RSAPSS padding mode?
  • From: Eddie Chang <eddie.via@xxxxxxxxxxxxx>
• Re: How to access different fields of structure SSL in OpenSSL 3.0
  • From: Tomas Mraz <tomas@xxxxxxxxxxx>
• Re: Install/Build openssl with following ciphers - TLS_ECDHE_ECDSA_WITH_AES_256_GCM_SHA384, TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384, TLS_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256, TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256
  • From: Matt Caswell <matt@xxxxxxxxxxx>
• Re: Install/Build openssl with following ciphers - TLS_ECDHE_ECDSA_WITH_AES_256_GCM_SHA384, TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384, TLS_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256, TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256
  • From: Billy Brumley <bbrumley@xxxxxxxxx>
• How to access different fields of structure SSL in OpenSSL 3.0
  • From: "Kumar Mishra, Sanjeev" <Sanjeev.Kumar-Mishra@xxxxxxxx>
• Re: Install/Build openssl with following ciphers - TLS_ECDHE_ECDSA_WITH_AES_256_GCM_SHA384, TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384, TLS_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256, TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256
  • From: "Mario Ds Briggs" <mario.briggs@xxxxxxxxxx>
• Query regarding ECC
  • From: Nagarjun J <1nagarjun1@xxxxxxxxx>
• Re: Install/Build openssl with following ciphers - TLS_ECDHE_ECDSA_WITH_AES_256_GCM_SHA384, TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384, TLS_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256, TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256
  • From: Matt Caswell <matt@xxxxxxxxxxx>
• Install/Build openssl with following ciphers - TLS_ECDHE_ECDSA_WITH_AES_256_GCM_SHA384, TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384, TLS_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256, TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256
  • From: "Mario Ds Briggs" <mario.briggs@xxxxxxxxxx>
• Re: Switch hangs for significant amount of time when using RAND_write_file API with openssl version 1.1.1h and above.
  • From: Dr Paul Dale <pauli@xxxxxxxxxxx>
• RE: How to switch between OpenSSL 1.0.2 and 1.1 in compilation loading and linking a C code.
  • From: "Floodeenjr, Thomas" <thomas_floodeenjr@xxxxxxxxxx>
• Re: openssl cms -encrypt error: error setting recipientinfo
  • From: "Blumenthal, Uri - 0553 - MITLL" <uri@xxxxxxxxxx>
• OpenSSL version 3.0.0-alpha16 published
  • From: OpenSSL <openssl@xxxxxxxxxxx>
• Re: Macro to support 3.0 and 1.0
  • From: Richard Levitte <levitte@xxxxxxxxxxx>
• Macro to support 3.0 and 1.0
  • From: Shivakumar Poojari <Shivakumar.Poojari@xxxxxxxx>
• Switch hangs for significant amount of time when using RAND_write_file API with openssl version 1.1.1h and above.
  • From: Sravani Maddukuri via openssl-users <openssl-users@xxxxxxxxxxx>
• How to switch between OpenSSL 1.0.2 and 1.1 in compilation loading and linking a C code.
  • From: "Kumar Mishra, Sanjeev" <Sanjeev.Kumar-Mishra@xxxxxxxx>
• openssl cms -encrypt error: error setting recipientinfo
  • From: "Ted Wynnychenko" <ted.m.w@xxxxxxxxxxx>
• Trouble trying to create a custom ASN.1 object via Openssl Config file
  • From: <BitBlitz@xxxxxxxxxxxxxxx>
• Re: Version compatibility issues - Re: openssl development work / paid
  • From: Jan Just Keijser <janjust@xxxxxxxxx>
• Re: Version compatibility issues - Re: openssl development work / paid
  • From: Embedded Devel <lists@xxxxxxxxxxxxxx>
• Re: Version compatibility issues - Re: openssl development work / paid
  • From: Jan Just Keijser <janjust@xxxxxxxxx>
• Re: Version compatibility issues - Re: openssl development work / paid
  • From: Embedded Devel <lists@xxxxxxxxxxxxxx>
• SSL Cipher suites settings in Nginx webserver
  • From: Kaushal Shriyan <kaushalshriyan@xxxxxxxxx>
• Re: Version compatibility issues - Re: openssl development work / paid
  • From: Jan Just Keijser <janjust@xxxxxxxxx>
• Re: Tutorial for OpenSSL3 deprecated API replacement
  • From: Nicola Tuveri <nic.tuv@xxxxxxxxx>
• Tutorial for OpenSSL3 deprecated API replacement
  • From: Juan Isoza <jisoza@xxxxxxxxx>
• Re: Load and unload of engines at runtime
  • From: Dr Paul Dale <pauli@xxxxxxxxxxx>
• Proposal to Deprecate TLS v1.2 within OWASP ASVS
  • From: Christian Heinrich <christian.heinrich@xxxxxxxxxx>
• Re: Load and unload of engines at runtime
  • From: Mahendra SP <mahendra.sp@xxxxxxxxx>
• openssl windows compile: VS2012 Pro vs VS2019 Community
  • From: Michael Mueller <abaci.mjm@xxxxxxxxx>
• Re: Request Assistance::No X509TrustManager implementation available
  • From: Mark Hack <markhack@xxxxxxxxxxxx>
• Request Assistance::No X509TrustManager implementation available
  • From: K V Rao via openssl-users <openssl-users@xxxxxxxxxxx>
• Re: Creating a CSR using OpenSSL v1.1.1
  • From: Joe Eremita <joe@xxxxxxxxxxxxxxxxxxxxx>
• Re: Creating a CSR using OpenSSL v1.1.1
  • From: Matt Caswell <matt@xxxxxxxxxxx>
• Creating a CSR using OpenSSL v1.1.1
  • From: Joe Eremita <joe@xxxxxxxxxxxxxxxxxxxxx>
• Load and unload of engines at runtime
  • From: Mahendra SP <mahendra.sp@xxxxxxxxx>
• RE: configuration options 'fips' and 'makedepend' disabled by default on master
  • From: "Dr. Matthias St. Pierre" <Matthias.St.Pierre@xxxxxxxxx>
• Re: Linker failure after compilation with "enable-crypto-mdebug"
  • From: Jan Just Keijser <janjust@xxxxxxxxx>
• Re: Linker failure after compilation with "enable-crypto-mdebug"
  • From: Robert Smith via openssl-users <openssl-users@xxxxxxxxxxx>
• Re: Linker failure after compilation with "enable-crypto-mdebug"
  • From: Jan Just Keijser <janjust@xxxxxxxxx>
• Re: PKCS7_decrypt vs RSA OAEP padding
  • From: Michal Moravec <michal.moravec@xxxxxxxxxxxxx>
• memory leak debug options
  • From: "Chetan, Sethi (Sasken; LEADER ; ADITJ/SWG)" <external.schetan@xxxxxxxxxxxxxx>
• configuration options 'fips' and 'makedepend' disbled by default on master
  • From: "Dr. Matthias St. Pierre" <Matthias.St.Pierre@xxxxxxxxx>
• Linker failure after compilation with "enable-crypto-mdebug"
  • From: Robert Smith via openssl-users <openssl-users@xxxxxxxxxxx>
• Re: facing issue in sha512 self - signed certificate
  • From: Mark Hack <markhack@xxxxxxxxxxxx>
• OpenSSL version 3.0.0-alpha15 published
  • From: OpenSSL <openssl@xxxxxxxxxxx>
• Re: facing issue in sha512 self - signed certificate
  • From: Vadivel P <vadivel86@xxxxxxxxx>
• Re: openssl-users Digest, Vol 77, Issue 36
  • From: κîηğ ròóτ‹¹‹ <sa0550000000@xxxxxxxxx>
• Documentation on openssl 1.0.2 / FIPS module version support for PPC LE
  • From: "Kenneth Goldman" <kgoldman@xxxxxxxxxx>
• Documentation on openssl 1.0.2 / FIPS module version support for PPC LE
  • From: "Bhadri Madapusi" <bhadrim@xxxxxxxxxx>
• Re: How to access different fields of typedef struct evp_pkey_st EVP_PKEY.
  • From: Tomas Mraz <tomas@xxxxxxxxxxx>
• Re: How to access different fields of typedef struct evp_pkey_st EVP_PKEY.
  • From: Matt Caswell <matt@xxxxxxxxxxx>
• How to access different fields of typedef struct evp_pkey_st EVP_PKEY.
  • From: "Kumar Mishra, Sanjeev" <Sanjeev.Kumar-Mishra@xxxxxxxx>
• Re: PKCS#1 RSAPublicKey in Openssl 3.0
  • From: Matt Caswell <matt@xxxxxxxxxxx>
• PKCS#1 RSAPublicKey in Openssl 3.0
  • From: "Paramashivaiah, Sunil" <Sunil.Paramashivaiah@xxxxxxxx>
• req command with -multivalue-rdn set
  • From: Alberto Martin via openssl-users <openssl-users@xxxxxxxxxxx>
• facing issue in sha512 self - signed certificate
  • From: preethi teekaraman <preethi.kavi17@xxxxxxxxx>
• Re: Fwd: Question about RSA key access mechanism
  • From: Danis Ozdemir <ozdemird@xxxxxx>
• Re: Help request
  • From: Viktor Dukhovni <openssl-users@xxxxxxxxxxxx>
• RE: Help request
  • From: Richard Simard <richard.simard@xxxxxxxxxxxxx>
• Help request
  • From: Richard Simard <richard.simard@xxxxxxxxxxxxx>
• Re: Maiising Daily Snapshots for 20210416
  • From: "Blumenthal, Uri - 0553 - MITLL" <uri@xxxxxxxxxx>
• RE: Maiising Daily Snapshots for 20210416
  • From: "Dr. Matthias St. Pierre" <Matthias.St.Pierre@xxxxxxxxx>
• Re: Maiising Daily Snapshots for 20210416
  • From: Matt Caswell <matt@xxxxxxxxxxx>
• Maiising Daily Snapshots for 20210416
  • From: The Doctor <doctor@xxxxxxxxxxxxxxxxx>
• Re: Fwd: Question about RSA key access mechanism
  • From: Matt Caswell <matt@xxxxxxxxxxx>
• Re: Fwd: Question about RSA key access mechanism
  • From: Stephen Farrell <stephen.farrell@xxxxxxxxx>
• Re: OpenSSL 3.0 - providing entropy to EVP_RAND ?
  • From: Bala Duvvuri via openssl-users <openssl-users@xxxxxxxxxxx>
• Re: PKCS7_decrypt vs RSA OAEP padding
  • From: Michal Moravec <michal.moravec@xxxxxxxxxxxxx>
• Re: PEM_read_bio_RSAPublicKey equivalent API which returns EVP_PKEY
  • From: Skip Carter <skip@xxxxxxxxxxx>
• Re: PKCS7_decrypt vs RSA OAEP padding
  • From: Michal Moravec <michal.moravec@xxxxxxxxxxxxx>
• Re: PKCS7_decrypt vs RSA OAEP padding
  • From: Jakob Bohm via openssl-users <openssl-users@xxxxxxxxxxx>
• Re: PKCS7_decrypt vs RSA OAEP padding
  • From: Michal Moravec <michal.moravec@xxxxxxxxxxxxx>
• Re: Help with i2d_CMS_bio_stream from OpenSSL 1.0 to OpenSSL 1.1.1j
  • From: Fabio <fabpet@xxxxxxxxx>
• Re: PEM_read_bio_RSAPublicKey equivalent API which returns EVP_PKEY
  • From: "Paramashivaiah, Sunil" <Sunil.Paramashivaiah@xxxxxxxx>
• Re: OpenSSL 3.0 - providing entropy to EVP_RAND ?
  • From: Dr Paul Dale <pauli@xxxxxxxxxxx>
• Re: Sp800 56a rev3
  • From: Dr Paul Dale <pauli@xxxxxxxxxxx>
• Sp800 56a rev3
  • From: Nagarjun J <1nagarjun1@xxxxxxxxx>
• SP800 56A rev3 patch
  • From: Nagarjun J <1nagarjun1@xxxxxxxxx>
• Re: OpenSSL 3.0 - providing entropy to EVP_RAND ?
  • From: Dr Paul Dale <pauli@xxxxxxxxxxx>
• Re: PEM_read_bio_RSAPublicKey equivalent API which returns EVP_PKEY
  • From: "Paramashivaiah, Sunil" <Sunil.Paramashivaiah@xxxxxxxx>
• Re: OpenSSL 3.0 - providing entropy to EVP_RAND ?
  • From: Bala Duvvuri via openssl-users <openssl-users@xxxxxxxxxxx>
• Re: Help with i2d_CMS_bio_stream from OpenSSL 1.0 to OpenSSL 1.1.1j
  • From: Fabio <fabpet@xxxxxxxxx>
• Re: X509_sign_ctx and ENGINE
  • From: Ron Kundla <rkundla@xxxxxxxxx>
• Re: X509_sign_ctx and ENGINE
  • From: Jan Just Keijser <janjust@xxxxxxxxx>
• X509_sign_ctx and ENGINE
  • From: Ron Kundla <rkundla@xxxxxxxxx>
• Re: PKCS7_decrypt vs RSA OAEP padding
  • From: Michal Moravec <michal.moravec@xxxxxxxxxxxxx>
• RE: Help with i2d_CMS_bio_stream from OpenSSL 1.0 to OpenSSL 1.1.1j
  • From: "Floodeenjr, Thomas" <thomas_floodeenjr@xxxxxxxxxx>
• Re: Help with i2d_CMS_bio_stream from OpenSSL 1.0 to OpenSSL 1.1.1j
  • From: Fabio <fabpet@xxxxxxxxx>
• Re: error: redefinition of ‘struct rsa_meth_st’
  • From: Shariful Alam <dipto181@xxxxxxxxx>
• FW: Strange warnings while linking to openssl version 1.1.1k
  • From: Michael Wojcik <Michael.Wojcik@xxxxxxxxxxxxxx>
• Re: Strange warnings while linking to openssl version 1.1.1k
  • From: Matt Caswell <matt@xxxxxxxxxxx>
• Strange warnings while linking to openssl version 1.1.1k
  • From: Robert Smith via openssl-users <openssl-users@xxxxxxxxxxx>
• Re: EVP_MAC_init() in 3.0 alpha 13
  • From: Hal Murray <hmurray@xxxxxxxxxxxxxxx>
• Re: error: redefinition of ‘struct rsa_meth_st’
  • From: Matt Caswell <matt@xxxxxxxxxxx>
• Re: PKCS7_decrypt vs RSA OAEP padding
  • From: Eliot Lear <lear@xxxxxxxxxxxxxxxxxxx>
• Re: error: redefinition of ‘struct rsa_meth_st’
  • From: "Blumenthal, Uri - 0553 - MITLL" <uri@xxxxxxxxxx>
• Re: error: redefinition of ‘struct rsa_meth_st’
  • From: Matt Caswell <matt@xxxxxxxxxxx>
• Re: PEM_read_bio_RSAPublicKey equivalent API which returns EVP_PKEY
  • From: Richard Levitte <levitte@xxxxxxxxxxx>
• Re: error: redefinition of ‘struct rsa_meth_st’
  • From: Shariful Alam <dipto181@xxxxxxxxx>
• Re: EVP_MAC_init() in 3.0 alpha 13
  • From: Tomas Mraz <tomas@xxxxxxxxxxx>
• Re: EVP_MAC_init() in 3.0 alpha 13
  • From: Hal Murray <hmurray@xxxxxxxxxxxxxxx>
• PKCS7_decrypt vs RSA OAEP padding
  • From: Michal Moravec <michal.moravec@xxxxxxxxxxxxx>
• Fwd: Question about RSA key access mechanism
  • From: Danis Ozdemir <ozdemird@xxxxxx>
• PEM_read_bio_RSAPublicKey equivalent API which returns EVP_PKEY
  • From: "Paramashivaiah, Sunil" <Sunil.Paramashivaiah@xxxxxxxx>
• Re: EVP_MAC_init() in 3.0 alpha 13
  • From: Dr Paul Dale <pauli@xxxxxxxxxxx>
• Re: error: redefinition of ‘struct rsa_meth_st’
  • From: Dr Paul Dale <pauli@xxxxxxxxxxx>
• error: redefinition of ‘struct rsa_meth_st’
  • From: Shariful Alam <dipto181@xxxxxxxxx>
• Re: Symbols X509_set_notAfter and X509_set_notBefore are missing
  • From: Dave Coombs <dcoombs@xxxxxxxxxxx>
• Re: Symbols X509_set_notAfter and X509_set_notBefore are missing
  • From: Robert Smith via openssl-users <openssl-users@xxxxxxxxxxx>
• Re: Symbols X509_set_notAfter and X509_set_notBefore are missing
  • From: Benjamin Kaduk via openssl-users <openssl-users@xxxxxxxxxxx>
• Symbols X509_set_notAfter and X509_set_notBefore are missing
  • From: Robert Smith via openssl-users <openssl-users@xxxxxxxxxxx>
• OpenSSL version 3.0.0-alpha14 published
  • From: OpenSSL <openssl@xxxxxxxxxxx>
• Help with i2d_CMS_bio_stream from OpenSSL 1.0 to OpenSSL 1.1.1j
  • From: Fabio <fabpet@xxxxxxxxx>
• Re: Compilation issue with 1.1.1k version
  • From: Matt Caswell <matt@xxxxxxxxxxx>
• Re: Compilation issue with 1.1.1k version
  • From: Matt Caswell <matt@xxxxxxxxxxx>
• Compilation issue with 1.1.1k version
  • From: Boris Shpoungin via openssl-users <openssl-users@xxxxxxxxxxx>
• Re: Using SSL_CTX_set_min_proto_version
  • From: Matt Caswell <matt@xxxxxxxxxxx>
• Re: Using SSL_CTX_set_min_proto_version
  • From: Tamara Kogan via openssl-users <openssl-users@xxxxxxxxxxx>
• Re: How to dump all certificates from a file?
  • From: David von Oheimb <dev@xxxxxxxx>
• Re: How to dump all certificates from a file?
  • From: Nan Xiao <xiaonan830818@xxxxxxxxx>
• Re: How to dump all certificates from a file?
  • From: Viktor Dukhovni <openssl-users@xxxxxxxxxxxx>
• How to dump all certificates from a file?
  • From: Nan Xiao <xiaonan830818@xxxxxxxxx>
• Re: Using SSL_CTX_set_min_proto_version
  • From: Matt Caswell <matt@xxxxxxxxxxx>
• Using SSL_CTX_set_min_proto_version
  • From: Tamara Kogan via openssl-users <openssl-users@xxxxxxxxxxx>
• RE: openssl-users Digest, Vol 77, Issue 6
  • From: Vishwanath Mahajanshetty <mahajanshetty@xxxxxxxxxxx>
• Re: EVP_MAC_init() in 3.0 alpha 13
  • From: Hal Murray <hmurray@xxxxxxxxxxxxxxx>
• Re: Porting to version 1.1.1 with old Linux kernel 3.0.8
  • From: Jan Just Keijser <janjust@xxxxxxxxx>
• Re: Porting to version 1.1.1 with old Linux kernel 3.0.8
  • From: Jan Just Keijser <janjust@xxxxxxxxx>
• How to load a custom OpenSSL engine automatically?
  • From: Shariful Alam <dipto181@xxxxxxxxx>
• Re: OpenSSL chain build error diagnostics - Re: Why does OpenSSL report google's certificate is "self-signed"?
  • From: Nan Xiao <xiaonan830818@xxxxxxxxx>
• stunnel 5.59 released
  • From: Michał Trojnara via openssl-users <openssl-users@xxxxxxxxxxx>
• Re: EVP_MAC_init() in 3.0 alpha 13
  • From: Dr Paul Dale <pauli@xxxxxxxxxxx>
• Re: Porting to version 1.1.1 with old Linux kernel 3.0.8
  • From: Boris Shpoungin via openssl-users <openssl-users@xxxxxxxxxxx>
• Re: Porting to version 1.1.1 with old Linux kernel 3.0.8
  • From: Viktor Dukhovni <openssl-users@xxxxxxxxxxxx>
• Self Singed certificate creating "Unknown CA issue"
  • From: preethi teekaraman <preethi.kavi17@xxxxxxxxx>
• How to get pub key from EC_KEY to vertify digest with ECDSA_do_verify function?
  • From: Sergio García <garcapradossergi76@xxxxxxxxx>
• Porting to version 1.1.1 with old Linux kernel 3.0.8
  • From: Boris Shpoungin via openssl-users <openssl-users@xxxxxxxxxxx>
• EVP_MAC_init() in 3.0 alpha 13
  • From: Hal Murray <hmurray@xxxxxxxxxxxxxxx>
• RE: openssl-users Digest, Vol 77, Issue 6
  • From: "Dr. Matthias St. Pierre" <Matthias.St.Pierre@xxxxxxxxx>
• Re: openssl-users Digest, Vol 77, Issue 6
  • From: Dr Paul Dale <pauli@xxxxxxxxxxx>
• Re: Regarding RAND_set_rand_method (was: openssl-users Digest, Vol 77, Issue 6)
  • From: "Dr. Matthias St. Pierre" <Matthias.St.Pierre@xxxxxxxxx>
• RE: openssl-users Digest, Vol 77, Issue 6
  • From: Vishwanath Mahajanshetty <mahajanshetty@xxxxxxxxxxx>
• OpenSSL chain build error diagnostics - Re: Why does OpenSSL report google's certificate is "self-signed"?
  • From: David von Oheimb <dev@xxxxxxxx>
• Re: openssl-users Digest, Vol 77, Issue 4
  • From: Dr Paul Dale <pauli@xxxxxxxxxxx>
• RE: openssl-users Digest, Vol 77, Issue 4
  • From: Vishwanath Mahajanshetty <mahajanshetty@xxxxxxxxxxx>
• Fwd: Nginx Server : fatal Error from Server
  • From: Vadivel P <vadivel86@xxxxxxxxx>
• RE: Regarding RAND_set_rand_method
  • From: "Dr. Matthias St. Pierre" <Matthias.St.Pierre@xxxxxxxxx>
• Re: Regarding RAND_set_rand_method
  • From: Dr Paul Dale <pauli@xxxxxxxxxxx>
• Regarding RAND_set_rand_method
  • From: Vishwanath Mahajanshetty <mahajanshetty@xxxxxxxxxxx>
• RE: Why does OpenSSL report google's certificate is "self-signed"?
  • From: Michael Wojcik <Michael.Wojcik@xxxxxxxxxxxxxx>
• Re: Why does OpenSSL report google's certificate is "self-signed"?
  • From: Peter Sylvester <peter.sylvester@xxxxxxxxx>
• Re: Why does OpenSSL report google's certificate is "self-signed"?
  • From: "Blumenthal, Uri - 0553 - MITLL" <uri@xxxxxxxxxx>
• RE: Why does OpenSSL report google's certificate is "self-signed"?
  • From: Michael Wojcik <Michael.Wojcik@xxxxxxxxxxxxxx>
• RE: Why does OpenSSL report google's certificate is "self-signed"?
  • From: Michael Wojcik <Michael.Wojcik@xxxxxxxxxxxxxx>
• Re: Why does OpenSSL report google's certificate is "self-signed"?
  • From: Mark Hack <markhack@xxxxxxxxxxxx>
• Re: Why does OpenSSL report google's certificate is "self-signed"?
  • From: Jan Just Keijser <janjust@xxxxxxxxx>
• Re: Why does OpenSSL report google's certificate is "self-signed"?
  • From: Dr Paul Dale <pauli@xxxxxxxxxxx>
• Re: Why does OpenSSL report google's certificate is "self-signed"?
  • From: Jan Just Keijser <janjust@xxxxxxxxx>
• Re: Why does OpenSSL report google's certificate is "self-signed"?
  • From: Viktor Dukhovni <openssl-users@xxxxxxxxxxxx>
• Re: Why does OpenSSL report google's certificate is "self-signed"?
  • From: "Blumenthal, Uri - 0553 - MITLL" <uri@xxxxxxxxxx>
• Re: Why does OpenSSL report google's certificate is "self-signed"?
  • From: Viktor Dukhovni <openssl-users@xxxxxxxxxxxx>
• Re: Why does OpenSSL report google's certificate is "self-signed"?
  • From: Viktor Dukhovni <openssl-users@xxxxxxxxxxxx>
• Re: Why does OpenSSL report google's certificate is "self-signed"?
  • From: "Walter H." <Walter.H@xxxxxxxxxxxxxxxxx>
• Re: Why does OpenSSL report google's certificate is "self-signed"?
  • From: "Blumenthal, Uri - 0553 - MITLL" <uri@xxxxxxxxxx>
• Re: Why does OpenSSL report google's certificate is "self-signed"?
  • From: Viktor Dukhovni <openssl-users@xxxxxxxxxxxx>
• RE: Why does OpenSSL report google's certificate is "self-signed"?
  • From: Michael Wojcik <Michael.Wojcik@xxxxxxxxxxxxxx>
• Re: Why does OpenSSL report google's certificate is "self-signed"?
  • From: Viktor Dukhovni <openssl-users@xxxxxxxxxxxx>
• Re: Openssl - G and P params value increase in DHE cipher
  • From: Hubert Kario <hkario@xxxxxxxxxx>
• Why does OpenSSL report google's certificate is "self-signed"?
  • From: Nan Xiao <xiaonan830818@xxxxxxxxx>
• Australia's DTCA/DSGL Criminalisation of Encryption based Technologies.
  • From: openssl@xxxxxxxxxxxx
• Re: Unable to load the FIPs config file OpenSSL 3.0
  • From: Dr Paul Dale <pauli@xxxxxxxxxxx>
• Re: Compute HMAC using nCipher ENGINE and HSM-based symmetric key
  • From: Jan Just Keijser <janjust@xxxxxxxxx>
• Compute HMAC using nCipher ENGINE and HSM-based symmetric key
  • From: Ron Kundla <rkundla@xxxxxxxxx>
• Unable to load the FIPs config file OpenSSL 3.0
  • From: Bala Duvvuri via openssl-users <openssl-users@xxxxxxxxxxx>
• Re: openssl speed ecdh
  • From: Tomas Mraz <tomas@xxxxxxxxxxx>
• Re: Version compatibility issues - Re: openssl development work / paid - SSL now FIXED
  • From: Jan Just Keijser <janjust@xxxxxxxxx>
• Re: FIPs algorithm code vs default implementation
  • From: Dr Paul Dale <pauli@xxxxxxxxxxx>
• Re: How to establish a connection with self signed certificate
  • From: Dmitry Belyavsky <beldmit@xxxxxxxxx>
• Re: Version compatibility issues - Re: openssl development work / paid - SSL now FIXED
  • From: Yassine Chaouche <a.chaouche@xxxxxxxxxxxxxxxxx>
• FIPs algorithm code vs default implementation
  • From: Bala Duvvuri via openssl-users <openssl-users@xxxxxxxxxxx>
• openssl speed ecdh
  • From: Jesús Molina Roldán <jmr_sultan@xxxxxxxxxxx>
• Openssl - G and P params value increase in DHE cipher
  • From: preethi teekaraman <preethi.kavi17@xxxxxxxxx>
• How to establish a connection with self signed certificate
  • From: preethi teekaraman <preethi.kavi17@xxxxxxxxx>
• Re: Mismatch between renegotiation reported vs functional
  • From: Shaun Robbins <mrshaun13@xxxxxxxxx>
• Re: Mismatch between renegotiation reported vs functional
  • From: Matt Caswell <matt@xxxxxxxxxxx>
• 'RSA' does not name a type
  • From: "Paramashivaiah, Sunil" <Sunil.Paramashivaiah@xxxxxxxx>
• Re: Version compatibility issues - Re: openssl development work / paid - SSL now FIXED
  • From: Embedded Devel <lists@xxxxxxxxxxxxxx>
• Re: libcrypto.a and FIPs module in OpenSSL 3.0
  • From: Matt Caswell <matt@xxxxxxxxxxx>
• libcrypto.a and FIPs module in OpenSSL 3.0
  • From: Bala Duvvuri via openssl-users <openssl-users@xxxxxxxxxxx>
• Re: Version compatibility issues - Re: openssl development work / paid
  • From: Embedded Devel <lists@xxxxxxxxxxxxxx>
• Version compatibility issues - Re: openssl development work / paid
  • From: David von Oheimb <dev@xxxxxxxx>
• Mismatch between renegotiation reported vs functional
  • From: Shaun Robbins <mrshaun13@xxxxxxxxx>
• [openssl CMP with pkcs11 engine]
  • From: mbalembo <marc.balemboy@xxxxxxxxxx>
• Re: OpenSSL Security Advisory
  • From: Hubert Kario <hkario@xxxxxxxxxx>
• OpenSSL Security Advisory
  • From: OpenSSL <openssl@xxxxxxxxxxx>
• OpenSSL version 1.1.1k published
  • From: OpenSSL <openssl@xxxxxxxxxxx>
• RE: openssl development work / paid
  • From: "Floodeenjr, Thomas" <thomas_floodeenjr@xxxxxxxxxx>
• openssl development work / paid
  • From: Embedded Devel <lists@xxxxxxxxxxxxxx>
• Re: ssl client write / server accept seems broken
  • From: Embedded Devel <lists@xxxxxxxxxxxxxx>
• Re: ssl client write / server accept seems broken
  • From: JONATHAN PELAEZ <ask.pleaze@xxxxxxxxx>
• Re: ssl client write / server accept seems broken
  • From: Embedded Devel <lists@xxxxxxxxxxxxxx>
• Re: OpenSSL 3.0 - providing entropy to EVP_RAND ?
  • From: Dr Paul Dale <pauli@xxxxxxxxxxx>
• OpenSSL 3.0 - providing entropy to EVP_RAND ?
  • From: Bala Duvvuri via openssl-users <openssl-users@xxxxxxxxxxx>
• Re: How to store openSSL EVP_MD and EVP_MD_CTX in local buffers
  • From: Dr Paul Dale <pauli@xxxxxxxxxxx>
• How to store openSSL EVP_MD and EVP_MD_CTX in local buffers
  • From: Vuthur Pavankumar <pawan0462@xxxxxxxxx>
• Re: ssl client write / server accept seems broken
  • From: Embedded Devel <lists@xxxxxxxxxxxxxx>
• Re: ssl client write / server accept seems broken
  • From: Matt Caswell <matt@xxxxxxxxxxx>
• Re: ssl client write / server accept seems broken
  • From: Embedded Devel <lists@xxxxxxxxxxxxxx>
• Re: ssl client write / server accept seems broken
  • From: Matt Caswell <matt@xxxxxxxxxxx>
• Re: ssl client write / server accept seems broken
  • From: Embedded Devel <lists@xxxxxxxxxxxxxx>
• Re: ssl client write / server accept seems broken
  • From: Matt Caswell <matt@xxxxxxxxxxx>
• ssl client write / server accept seems broken
  • From: Embedded Devel <lists@xxxxxxxxxxxxxx>
• Re: Envelope problem
  • From: Robert Burner Schadek <realburner@xxxxxx>
• Forthcoming OpenSSL release
  • From: Matt Caswell <matt@xxxxxxxxxxx>
• OCSP verification in a non-blocking environment
  • From: Detlef Vollmann <dv@xxxxxxxxxxx>
• Re: Creating an X25519 client certificate
  • From: Robert Moskowitz <rgm@xxxxxxxxxxxxxxx>
• Re: Creating an X25519 client certificate
  • From: tincanteksup <tincanteksup@xxxxxxxxx>
• Re: Creating an X25519 client certificate
  • From: Robert Moskowitz <rgm@xxxxxxxxxxxxxxx>
• Re: Creating an X25519 client certificate
  • From: Viktor Dukhovni <openssl-users@xxxxxxxxxxxx>
• Re: Creating an X25519 client certificate
  • From: Robert Moskowitz <rgm@xxxxxxxxxxxxxxx>
• Re: Creating an X25519 client certificate
  • From: Viktor Dukhovni <openssl-users@xxxxxxxxxxxx>
• Creating an X25519 client certificate
  • From: Robert Moskowitz <rgm@xxxxxxxxxxxxxxx>
• Question on RSA engine and Key strength
  • From: Jayalakshmi bhat <bhat.jayalakshmi@xxxxxxxxx>
• Why legacy implement still linked in the libcrypto?
  • From: Chenxinping <kan.chen@xxxxxxxxxx>
• Re: Is SSL_CTX_set_tmp_rsa_callback() only for small keys?
  • From: Matt Caswell <matt@xxxxxxxxxxx>
• Is SSL_CTX_set_tmp_rsa_callback() only for small keys?
  • From: Thomas Dwyer III <tomiii@xxxxxxxxxx>
• Re: Client certificate authentication
  • From: Robert Ionescu <hightronicdesign@xxxxxxxxx>
• Re: Client certificate authentication
  • From: Viktor Dukhovni <openssl-users@xxxxxxxxxxxx>
• Re: Client certificate authentication
  • From: Robert Ionescu <hightronicdesign@xxxxxxxxx>
• modern algorithms performance in TLS 1.3
  • From: Jesús Molina Roldán <jmr_sultan@xxxxxxxxxxx>
• RE: FIPS compliance with openssl-1.1.1j
  • From: Michael Wojcik <Michael.Wojcik@xxxxxxxxxxxxxx>
• Re: Client certificate authentication
  • From: Viktor Dukhovni <openssl-users@xxxxxxxxxxxx>
• FIPS compliance with openssl-1.1.1j
  • From: Nagarjun J <1nagarjun1@xxxxxxxxx>
• Re: Client certificate authentication
  • From: Robert Ionescu <hightronicdesign@xxxxxxxxx>
• RE: Client certificate authentication
  • From: Michael Wojcik <Michael.Wojcik@xxxxxxxxxxxxxx>
• Re: Client certificate authentication
  • From: Kyle Hamilton <aerowolf@xxxxxxxxx>
• Re: Client certificate authentication
  • From: Viktor Dukhovni <openssl-users@xxxxxxxxxxxx>
• Client certificate authentication
  • From: Robert Ionescu <hightronicdesign@xxxxxxxxx>
• Re: Cross-Compiling w/ FIPS Support from Linux to Windows
  • From: Bradley Gannon <bradley@xxxxxxxxxxxxxxxxx>
• OpenSSL version 3.0.0-alpha13 published
  • From: OpenSSL <openssl@xxxxxxxxxxx>
• couldnot upload OBWAC and OBSEAl for openbanking
  • From: Madhumitha Penmetsa <madhumitha.penmetsa@xxxxxxxxxxxx>
• Re: Dumping key to file
  • From: Harish Kulkarni <harishvk27@xxxxxxxxx>
• Re: Dumping key to file
  • From: Matt Caswell <matt@xxxxxxxxxxx>
• Re: Dumping key to file
  • From: Jeremy Harris <jgh@xxxxxxxxxxx>
• Dumping key to file
  • From: Harish Kulkarni <harishvk27@xxxxxxxxx>
• Re: OpenSSL 3.0.0 APIs for creating an EVP_PKEY from a p256 private key octet string
  • From: Matt Caswell <matt@xxxxxxxxxxx>
• Re: OpenSSL 3.0.0 APIs for creating an EVP_PKEY from a p256 private key octet string
  • From: Stephen Farrell <stephen.farrell@xxxxxxxxx>
• Re: OpenSSL 3.0.0 APIs for creating an EVP_PKEY from a p256 private key octet string
  • From: Matt Caswell <matt@xxxxxxxxxxx>
• Re: OpenSSL 3.0.0 APIs for creating an EVP_PKEY from a p256 private key octet string
  • From: Tomas Mraz <tomas@xxxxxxxxxxx>
• Openssl library- 1.1.1g C++ disconnection and reconnection
  • From: om pushkara <ompushkara12345@xxxxxxxxx>
• Re: OpenSSL 3.0.0 APIs for creating an EVP_PKEY from a p256 private key octet string
  • From: Stephen Farrell <stephen.farrell@xxxxxxxxx>
• Envelope problem
  • From: Robert Burner Schadek <realburner@xxxxxx>
• Re: OpenSSL 3.0.0 APIs for creating an EVP_PKEY from a p256 private key octet string
  • From: Stephen Farrell <stephen.farrell@xxxxxxxxx>
• Query on engine support in OpenSSL 1.0.2h
  • From: Jayalakshmi bhat <bhat.jayalakshmi@xxxxxxxxx>
• Re: OpenSSL 3.0.0 APIs for creating an EVP_PKEY from a p256 private key octet string
  • From: Benjamin Kaduk via openssl-users <openssl-users@xxxxxxxxxxx>
• Re: OpenSSL 3.0.0 APIs for creating an EVP_PKEY from a p256 private key octet string
  • From: Stephen Farrell <stephen.farrell@xxxxxxxxx>
• Cross-Compiling w/ FIPS Support from Linux to Windows
  • From: Bradley Gannon <bradley@xxxxxxxxxxxxxxxxx>
• Re: OpenSSL 3.0.0 APIs for creating an EVP_PKEY from a p256 private key octet string
  • From: Benjamin Kaduk via openssl-users <openssl-users@xxxxxxxxxxx>
• OpenSSL 3.0.0 APIs for creating an EVP_PKEY from a p256 private key octet string
  • From: Stephen Farrell <stephen.farrell@xxxxxxxxx>
• Fwd: Openssl - 1.1.1g disconnection and reconnection
  • From: om pushkara <ompushkara12345@xxxxxxxxx>
• PKSC7 encryption
  • From: Vijayakumari Parthasarathy <vijayakumariparthasarathy@xxxxxxxxx>
• 回复: Question: How to using cert files on Android platform?
  • From: Yang Rong <sanjurohayami@xxxxxxxxxxx>
• Re: Fwd: Requesting to share OpenSSL commands to increase G Pramaeter length in DHE Cipher.
  • From: Kurt Roeckx <kurt@xxxxxxxxx>
• Re: Fwd: Requesting to share OpenSSL commands to increase G Pramaeter length in DHE Cipher.
  • From: Hubert Kario <hkario@xxxxxxxxxx>
• Fwd: Requesting to share OpenSSL commands to increase G Pramaeter length in DHE Cipher.
  • From: Vadivel P <vadivel86@xxxxxxxxx>
• Re: Question: How to using cert files on Android platform?
  • From: Viktor Dukhovni <openssl-users@xxxxxxxxxxxx>
• Question: How to using cert files on Android platform?
  • From: Yang Rong <sanjurohayami@xxxxxxxxxxx>
• Re: Query on SSL Mutual Authentication on Server
  • From: Jakob Bohm via openssl-users <openssl-users@xxxxxxxxxxx>
• Re: Query on SSL Mutual Authentication on Server
  • From: Viktor Dukhovni <openssl-users@xxxxxxxxxxxx>
• Query on SSL Mutual Authentication on Server
  • From: Archana <arcbhat1234@xxxxxxxxx>
• Passing the same data to SSL_do_handshake multiple times
  • From: Michal Sledz <michal.sledz@xxxxxxxxxxxxx>
• Re: PEM file line size
  • From: Benjamin Kaduk via openssl-users <openssl-users@xxxxxxxxxxx>
• Re: PEM file line size
  • From: Frank Liu <gfrankliu@xxxxxxxxx>
• Re: ASN.1 encoding error
  • From: Peter Sylvester <peter.sylvester@xxxxxxxxx>
• Re: ASN.1 encoding error
  • From: John Robson via openssl-users <openssl-users@xxxxxxxxxxx>
• Re: ASN.1 encoding error
  • From: Benjamin Kaduk via openssl-users <openssl-users@xxxxxxxxxxx>
• ASN.1 encoding error
  • From: John Robson via openssl-users <openssl-users@xxxxxxxxxxx>
• Re: PEM file line size
  • From: Frank Liu <gfrankliu@xxxxxxxxx>
• Re: PEM file line size
  • From: Matthias Buehlmann <Matthias.Buehlmann@xxxxxxxxxxxx>
• Support of Indirect CRL and How to?
  • From: "Romain Viau" <romain@xxxxxxxx>
• PEM file line size
  • From: Frank Liu <gfrankliu@xxxxxxxxx>
• RE: Edwards and public key validation
  • From: <john.hughes@xxxxxxxxxxx>
• Re: Edwards and public key validation
  • From: Billy Brumley <bbrumley@xxxxxxxxx>
• An idiosyncratic port of OpenSSL 1.1.1j to OS/400 ILE
  • From: Dan Fulger <dfulger@xxxxxxx>
• Problem with upgrade to 3.0 - d2i_ASN1_SET bad class
  • From: ivano giancaterina <ivanogiancaterina@xxxxxxxxx>
• RE: Edwards and public key validation
  • From: <john.hughes@xxxxxxxxxxx>
• Re: Edwards and public key validation
  • From: Billy Brumley <bbrumley@xxxxxxxxx>
• stunnel 5.58 released
  • From: Michał Trojnara via openssl-users <openssl-users@xxxxxxxxxxx>
• Edwards and public key validation
  • From: <john.hughes@xxxxxxxxxxx>
• Useable digest algorithms with signature
  • From: Patrice Guérin <guerinp@xxxxxxxxx>