From rickard at opendnssec.org  Sat May  2 16:15:36 2015
From: rickard at opendnssec.org (Rickard Bellgrim)
Date: Sat, 2 May 2015 18:15:36 +0200
Subject: [Softhsm-develop] Configure script & custom OpenSSL path
In-Reply-To: <55350EF4.2080308@redhat.com>
References: <552F94BF.4010706@redhat.com>
	<CAKFiof=J3T1Mwd-_XfW54wpjot5tbU_9qDJ1x+GgLKNtUHSnqw@mail.gmail.com>
	<AF5B7D6B-F078-404F-ABCF-CB71C34A0A83@kirei.se>
	<5530B3B0.6050805@redhat.com>
	<32CF19A6-8CD0-40DD-BC15-A1A58EC658FA@kirei.se>
	<55310B75.3030502@redhat.com>
	<CAKFiofnLSuBW7JZNCeDAOJFeav0yFikCiC4iCa_3vWEC+2dcDg@mail.gmail.com>
	<55350EF4.2080308@redhat.com>
Message-ID: <CAKFiofnAAxaQQz9zDO-rF1rYEiZGBz_aDdTpajT1hZc48YQgMw@mail.gmail.com>

On Mon, Apr 20, 2015 at 4:36 PM, Petr Spacek <pspacek at redhat.com> wrote:

> My problem was that it the check itself was testing openssl in / and not in
> /usr/local/ssl. The compilation later used /usr/local/ssl as it should so
> that
> was okay for me, just the check itself was bogus.
>
> Does it say 'RFC 5649 is supported' if you run configure script without
> --with-openssl=/usr/local/ssl ?
>

I get:
checking OpenSSL EVP interface for AES key wrapping... RFC 3394 is not
supported
checking OpenSSL EVP interface for AES key wrapping with pad... RFC 5649 is
not supported

It uses the native version on my OS (OpenSSL 1.0.1f 6 Jan 2014).

Maybe the OPENSSL_PATH in m4/acx_openssl.m4 should be changed from
"/usr/local" to "/usr/local/ssl"?

// Rickard
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.opendnssec.org/pipermail/softhsm-develop/attachments/20150502/883819ba/attachment.htm>

From pspacek at redhat.com  Fri May 15 14:41:36 2015
From: pspacek at redhat.com (Petr Spacek)
Date: Fri, 15 May 2015 16:41:36 +0200
Subject: [Softhsm-develop] Configure script & custom OpenSSL path
In-Reply-To: <CAKFiofnAAxaQQz9zDO-rF1rYEiZGBz_aDdTpajT1hZc48YQgMw@mail.gmail.com>
References: <552F94BF.4010706@redhat.com>	<CAKFiof=J3T1Mwd-_XfW54wpjot5tbU_9qDJ1x+GgLKNtUHSnqw@mail.gmail.com>	<AF5B7D6B-F078-404F-ABCF-CB71C34A0A83@kirei.se>	<5530B3B0.6050805@redhat.com>	<32CF19A6-8CD0-40DD-BC15-A1A58EC658FA@kirei.se>	<55310B75.3030502@redhat.com>	<CAKFiofnLSuBW7JZNCeDAOJFeav0yFikCiC4iCa_3vWEC+2dcDg@mail.gmail.com>	<55350EF4.2080308@redhat.com>
	<CAKFiofnAAxaQQz9zDO-rF1rYEiZGBz_aDdTpajT1hZc48YQgMw@mail.gmail.com>
Message-ID: <555605A0.4070605@redhat.com>

On 2.5.2015 18:15, Rickard Bellgrim wrote:
> On Mon, Apr 20, 2015 at 4:36 PM, Petr Spacek <pspacek at redhat.com> wrote:
> 
>> My problem was that it the check itself was testing openssl in / and not in
>> /usr/local/ssl. The compilation later used /usr/local/ssl as it should so
>> that
>> was okay for me, just the check itself was bogus.
>>
>> Does it say 'RFC 5649 is supported' if you run configure script without
>> --with-openssl=/usr/local/ssl ?
>>
> 
> I get:
> checking OpenSSL EVP interface for AES key wrapping... RFC 3394 is not
> supported
> checking OpenSSL EVP interface for AES key wrapping with pad... RFC 5649 is
> not supported
> 
> It uses the native version on my OS (OpenSSL 1.0.1f 6 Jan 2014).
> 
> Maybe the OPENSSL_PATH in m4/acx_openssl.m4 should be changed from
> "/usr/local" to "/usr/local/ssl"?

Finally I found out that it was a problem with broken OpenSSL installation in
/usr/local/ssl on my test machine.

Please ignore this thread :-)

-- 
Petr Spacek  @  Red Hat


From rickard at opendnssec.org  Tue May 19 19:33:59 2015
From: rickard at opendnssec.org (Rickard Bellgrim)
Date: Tue, 19 May 2015 21:33:59 +0200
Subject: [Softhsm-develop] New release of SoftHSM
Message-ID: <CAKFiofk61JS4UMVhcQh7b4kA6R1f7Opbjm+TOwZXd6_zrXEuYA@mail.gmail.com>

Hi

There are no more open issues for 2.0.0. Should we go ahead with a new beta
version or release candidate?

// Rickard
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.opendnssec.org/pipermail/softhsm-develop/attachments/20150519/47677c69/attachment.htm>

From pspacek at redhat.com  Thu May 21 13:02:25 2015
From: pspacek at redhat.com (Petr Spacek)
Date: Thu, 21 May 2015 15:02:25 +0200
Subject: [Softhsm-develop] New release of SoftHSM
In-Reply-To: <CAKFiofk61JS4UMVhcQh7b4kA6R1f7Opbjm+TOwZXd6_zrXEuYA@mail.gmail.com>
References: <CAKFiofk61JS4UMVhcQh7b4kA6R1f7Opbjm+TOwZXd6_zrXEuYA@mail.gmail.com>
Message-ID: <555DD761.3010503@redhat.com>

On 19.5.2015 21:33, Rickard Bellgrim wrote:
> Hi
> 
> There are no more open issues for 2.0.0. Should we go ahead with a new beta
> version or release candidate?

Yes please :-)

I would like to have a signed tarball with fix for latest segfault
https://github.com/opendnssec/SoftHSMv2/pull/120

Thank you very much!

-- 
Petr Spacek  @  Red Hat


From rickard at opendnssec.org  Thu May 28 20:26:11 2015
From: rickard at opendnssec.org (Rickard Bellgrim)
Date: Thu, 28 May 2015 22:26:11 +0200
Subject: [Softhsm-develop] New release of SoftHSM
In-Reply-To: <555DD761.3010503@redhat.com>
References: <CAKFiofk61JS4UMVhcQh7b4kA6R1f7Opbjm+TOwZXd6_zrXEuYA@mail.gmail.com>
	<555DD761.3010503@redhat.com>
Message-ID: <CAKFiof=g4nNTfWO9URR-7AUc4sHwPdMpLHbuG4rui5L-8U-dPA@mail.gmail.com>

On Thu, May 21, 2015 at 3:02 PM, Petr Spacek <pspacek at redhat.com> wrote:

> On 19.5.2015 21:33, Rickard Bellgrim wrote:
> > Hi
> >
> > There are no more open issues for 2.0.0. Should we go ahead with a new
> beta
> > version or release candidate?
>
> Yes please :-)
>
> I would like to have a signed tarball with fix for latest segfault
> https://github.com/opendnssec/SoftHSMv2/pull/120
>
> Thank you very much!
>

Jakob, lets build and release RC1 for the package maintainers.

// Rickard
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.opendnssec.org/pipermail/softhsm-develop/attachments/20150528/96003011/attachment.htm>