[Author Prev][Author Next][Thread Prev][Thread Next][Author Index][Thread Index]

Re: [tor-dev] TLS warning using static OpenSSL 1.0.1c

To: tor-dev@xxxxxxxxxxxxxxxxxxxx
Subject: Re: [tor-dev] TLS warning using static OpenSSL 1.0.1c
From: grarpamp <grarpamp@xxxxxxxxx>
Date: Mon, 25 Jun 2012 17:31:19 -0400
Delivered-to: archiver@xxxxxxxx
Delivery-date: Mon, 25 Jun 2012 17:31:33 -0400
Dkim-signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20120113; h=mime-version:in-reply-to:references:date:message-id:subject:from:to :content-type; bh=uZpt/uy+MPaxDVfiZBQVxdxYIV3n+WoFtffG2bxzfhU=; b=lCxFnJW9pyL2mashFStDWNjevQr1vsfUhxfRfmJYs6SlJSucoGDalO6hU6cOZns+kQ iOY1ymfuU0mx98yQ4+dFMg7v2iixFf3qT+ZnhEs+7RrQFhXa/DarXUDC//D/VrKe8adf K7uOAgVCepQNwAuSL4g7pWd5horXY6VvFWLvw/hmPsDPnHjbA2xDkx+mKZKzt1CeMDqf No7NF4WQeoRgr0F7H/cnM1VwfaAC4X3+TWvCv1Z+FTqxu/3IjxXHFRmnpONBbePVeD8e /4v3gqkK3GKV3l7aBwDNtv9lQMnS8ojsZZxXUWT0B2xsQyqK2P2XI7S+bSQZxX8o4qV3 hGwg==
In-reply-to: <CABgZ87YbNzK3teLDXx1PanaizBTKgq5b2MtxzZxz_vGoy+MJSw@xxxxxxxxxxxxxx>
List-archive: <http://lists.torproject.org/pipermail/tor-dev>
List-help: <mailto:tor-dev-request@lists.torproject.org?subject=help>
List-id: "This mailing list is for discussion by the developers of Tor." <tor-dev.lists.torproject.org>
List-post: <mailto:tor-dev@lists.torproject.org>
List-subscribe: <https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-dev>, <mailto:tor-dev-request@lists.torproject.org?subject=subscribe>
List-unsubscribe: <https://lists.torproject.org/cgi-bin/mailman/options/tor-dev>, <mailto:tor-dev-request@lists.torproject.org?subject=unsubscribe>
References: <CABgZ87ab-HskJy_+C7nHGTe86rR7c01gbxnBQSGXnhypNA1WPg@xxxxxxxxxxxxxx> <CAKDKvuwrcWC3dS=KtJ+dNZvn3TADqL4r7OzXAz4XuXd5_n_+zA@xxxxxxxxxxxxxx> <CABgZ87YPcODp0B1EgPuCC=0LSQZ+QK7r2YwHRQRgZzFFBKoUbQ@xxxxxxxxxxxxxx> <CABgZ87YbNzK3teLDXx1PanaizBTKgq5b2MtxzZxz_vGoy+MJSw@xxxxxxxxxxxxxx>
Reply-to: tor-dev@xxxxxxxxxxxxxxxxxxxx
Sender: tor-dev-bounces@xxxxxxxxxxxxxxxxxxxx

> OpenSSL 1.0.1c has been build with:
> ./Configure debian-mipsel shared enable-tlsext zlib-dynamic no-ssl2

I've never been able to compile openssl statically such that I could use
the resultant binary, dynlib and statlib it everywhere needed. Nor does
zlib play right in that. More on the ssl mail list.

> could not load the shared library (in DSO support routines

I remember something like that before. Redo your openssl without
'zlib-dynamic'. Redo libevent against that. Then do Tor as static.
I think that should make it go away.

Be sure libevent/tor ./configure's are pointed against ssl you compiled,
and not default system libs.

I also think 'enable-tlsext' is redundant in that ./config probably
includes it automatically now, as with no-ssl2. See: openssl ciphers -v.
_______________________________________________
tor-dev mailing list
tor-dev@xxxxxxxxxxxxxxxxxxxx
https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-dev

Follow-Ups:
- Re: [tor-dev] TLS warning using static OpenSSL 1.0.1c
  - From: Gino Badouri

References:
- [tor-dev] TLS warning using static OpenSSL 1.0.1c
  - From: Gino Badouri
- Re: [tor-dev] TLS warning using static OpenSSL 1.0.1c
  - From: Nick Mathewson
- Re: [tor-dev] TLS warning using static OpenSSL 1.0.1c
  - From: Gino Badouri
- Re: [tor-dev] TLS warning using static OpenSSL 1.0.1c
  - From: Gino Badouri

Prev by Author: Re: [tor-dev] TLS warning using static OpenSSL 1.0.1c
Next by Author: Re: [tor-dev] TLS warning using static OpenSSL 1.0.1c
Previous by thread: Re: [tor-dev] TLS warning using static OpenSSL 1.0.1c
Next by thread: Re: [tor-dev] TLS warning using static OpenSSL 1.0.1c
Index(es):
- Author
- Thread