In OpenBSD, we just removed the offending code and stubbed the
functions to fail. So IDEA isn't in-tree. RSA similarly used to be
stubbed to fail.
-Bob
__
OpenSSL Project htt
> > The problem is the socket should be blocking, but for some reason, it
has
> > become non-blocking. Using Observer and stepping through the code, I
> > verified
> Are you using WSAEventSelect or WSAAsyncSelect functions? They put socket
> into non-blocking mode.
> Arne
None of our code conta
Has anyone successfully implemented the ssl3_get_server_hello() method on
NT?
We can write to an NT socket; however, we are unable to read from it. Even
when
I set socket to blocking mode just before a call to SSL_write(), it will
only
read the first five bytes out of a few hundred (the server is
Hi! I am working on including SSL client in our product. One of the options
is using OpenSSL. But the problem is that our product is designed and
strictly structured as portable, that is the major part of the code is the
same for different platforms and only a thin layer contains platform
dependen
I hope I'm not annoying anyone here with this post.
I sent it to openssl-users first but I guess they're all
users who don't need to know SSL internals.
Also, I think this is at least somewhat relevant to the
developers list because I'm going to be hacking OpenSSL
to work with our hardware. And t
On Tue, Oct 24, 2000 at 09:26:36AM -0700, john traenky wrote:
> Allow me to parse what is available now, from old and
> current sources. I will send it to the dev group and
> to you. If acceptable; use it, display it, link to
> it.
The OpenSSL team members will take care of creating links, make
I was having similar issues with a program I am working on. I need to be able to
grab a certificate, open it up, then extract the OID from it using JAVA. If
anyone has any exp. doing this please email privately ASAP :) Thank you
Kevin
Richard Levitte - VMS Whacker wrote:
> From: Dr S N Henson
see http://csrc.nist.gov/csor/algorithms.htm
NIST-AES { joint-iso-ccitt(2) country(16) us(840) organization(1) gov(101)
csor(3)
nistalgorithm(4) modules (0) aes (1) } DEFINITIONS IMPLICIT TAGS ::= BEGIN
-- IMPORTS None --
-- EXPORTS All --
AESAlgorithmIdentifier ::= AlgorithmIdentifier {{ A
Glenn Horton wrote:
>
> Has anyone ever considered providing a GSS-API interface into OpenSSL?
Yes, the Globus GSI is a GSSAPI implementation using SSL.
See http://www.globus.org/security/v1.1/
This has been in operation for over two years, originally using SSLeay, and now
OpenSSL.
Your English is at once clear and eloquent.
Allow me to parse what is available now, from old and
current sources. I will send it to the dev group and
to you. If acceptable; use it, display it, link to
it.
Let's tentatively commit to a draft user's guide by
Weihnachten perhaps? Anything is be
Hi there,
On Mon, 23 Oct 2000, David Schwartz wrote:
> > This is not true. Session caching is independant of the IO mechanism you
> > choose to use.
>
> Then how does the client code know which session to reuse? It doesn't know
> what server it's talking to.
In the case of an SSL server,
Attached is the patches for OpenSSL 0.9.6 to enable the AES
winner:Rijndael.
Three files:
1. rijndael.diff - The diff file to use with "patch -p3 -u"
2. cmd - The command executed to create the diff file.
3. exclude - The files that were excluded.
Procedure for using patch:
1. tar zxf openssl
Lutz is right, there's lots of bad advice lurking on the email lists;
openssl-dev is better than openssl-users.
On the other hand, I think it will be easier to figure out who's right
and who's not. Whenever you get conflicting feedback, or from someone
you don't know, mark it off as "to be confi
> > My own code uses bio pairs. We special case the connection
> > setup phase.
> > Otherwise, we basically just manage the four I/O streams and
> > the SSL code
> > does its part without any special effort. Of course, it's
> > multithreaded, but
> > then it has to run on high-end SMP machine
On Thu, Oct 26, 2000 at 12:01:58PM -0700, David Schwartz wrote:
> [...](this is the code I would call _after_ any case where I did a BIO_write
> to the SSL code):
>
> bool done;
> char buf[768];
>
> done=false;
> while(!done)
> {
>done=true;
>
>// Does the SSL library want to
Hey there,
On Thu, 26 Oct 2000, David Schwartz wrote:
> > The connection setup phase shouldn't need to be "special" - but of course
> > I don't know what interesting things you may be doing :-) If your model
> > requires that this is unique and otherwise you've got I/O logic built
> > around the
> You have to include that BIO_write(bio_io, ...) in this loop!
Why? I have to data to write. If I had data to write, I would have already
written it before I entered the loop. If I get more data to write later,
I'll enter the loop again.
> Either check if data is available from the net
A few minutes, I merged the engine branch into the main trunk. That
means that openssl-engine-SNAPSHOT-mmdd.tar.gz will not be
produced from tomorrow on, since it would be the same as
openssl-SNAPSHOT-mmdd.tar.gz. It also means that the engine code
will be present as a part of the standa
Hi there (again),
On Thu, 26 Oct 2000, David Schwartz wrote:
> > You have to include that BIO_write(bio_io, ...) in this loop!
>
> Why? I have to data to write. If I had data to write, I would have already
> written it before I entered the loop. If I get more data to write later,
> I'll e
It sounds like you've observed too things:
(1) In your previous thread, you mentioned that you had a nonblocking socket
and were getting WSAEWOULDBLOCK returned on a recv. This means that there
was no data ready for reading. There may have been some data just about to
arrive, but at the time of
"Reddie, Steven" wrote:
>
> I've been doing this outside of work. I'll post some patches soon (within
> the next week if I get the time). The biggest problem with Windows CE is
> that there's no C runtime library,
You have to be kidding!
Cheers,
Ben.
--
http://www.apache-ssl.org/ben.html
"
Kidding about doing it at all, or about Windows CE not having a C runtime
library?
I am doing this, though not putting much effort into it because it's just to
get a small app of mine working. I've got libeay32.dll and the tests built,
and have verified that rsa_test.exe works. I'm not all that
22 matches
Mail list logo
