I'm trying this on a certificate file that has a known and verified
private key and when it prompts me for the password, and I type it in,
it always fails. I'm not sure of the problem. I tried inserting
fprintf(stderr,"trace here\n"); statements and I get no output from
anywhere where it seems I
Hi all.
I've made a function, which takes as params an x509 certificate request, the ca's private key, and certificate, and makes a signed certificate.
First I convert the x509_req structure to x509 with X509_REQ_to_X509, and after that I sign the certificate, set the extensions, etc., and final
On Wed, Apr 18, 2001 at 02:29:45PM -0400, George Lind wrote:
> I am running a server on NT. I am am using verify peer. The server is
> failing on the SSL_accept with an error message of
> "SSL3_GET_CLIENT_CERTIFICATE:no certificate returned". My SSL_accept is
> return a -1. The client is also
Hi,
I'm doing following code:
int main(int argc, char* argv[])
{
BYTE* pData = 0;
size_t nSize = 0;
FILE* fp = fopen("d:\\certcrl.crl", "rb");
if(fp)
{
fseek(fp, 0, SEEK_END) ;
nSize = ftell(fp);
fsee
George,
I don't really know what happens in the SSLv2 case. SSLv2 has no
close_notify message, so there's no secure way for SSL to know that a
connection is being closed. The higher level protocol must provide some
equivalent secure mechanism for connection closure, or you are vulnerable to
trunc
> Hi
>
> I wanted to know if anyone has gotten openSSL to work with visual basic. If
> you have, can you please let me know. It would be greatly appreciated.
>
> Thanks
I found that it is rather difficult to compile a version of the library
that works. I got around an initial problem by addi
Roberto Rodrigues - McLean <[EMAIL PROTECTED]> writes:
> I guess I just wasn't waiting long enough. I don't know if ssldump is in
> need of some fflushs (maybe FreeBSD cashes too much stdout) or the process
> of decryption is that slow but everything works as expected.
I doubt it's performance. S
I am running a server on NT. I am am using verify peer. The server is
failing on the SSL_accept with an error message of
"SSL3_GET_CLIENT_CERTIFICATE:no certificate returned". My SSL_accept is
return a -1. The client is also using verify peer. Is the problem in my
client or server?
Thanks,
Thanks Greg,
Does this mean that SSL v2 would return a different return code from
SSL_read? And if not then how can I check for the particular circumstance
of a socket disconnection in this mode. I'm just trying to get a handle on
how I can support the RFC with SSL v2, it must have been done by
It is safe to treat this as a non-error if you are using SSL version 3 or
higher, but not if you connected with SSL version 2. So do not use SSL v2.
Sending an SSL_shutdown() is the safe way to close the connection, but it
may have performace implications because of the rules OpenSSL uses for
man
Hi,
I'm working with an HTTP application, and according to the RFC when sending
the HTTP response it is permissible to signal the end of the response by
closing the socket (rather than using the Content-Length header).
When implementing the HTTP client using SSL, SSL_read will return
SSL_ERROR_Z
Hi
I wanted to know if anyone has gotten openSSL to work with visual basic. If
you have, can you please let me know. It would be greatly appreciated.
Thanks
_
Get Your Private, Free E-mail from MSN Hotmail at http://www.h
I guess I just wasn't waiting long enough. I don't know if ssldump is in
need of some fflushs (maybe FreeBSD cashes too much stdout) or the process
of decryption is that slow but everything works as expected.
I'll be using Netscape for now since it uses RSA.
Thanks,
roberto.
-Original Mess
Hi
I´am sorry. I got another prob.
I made ./config then make and then make install !!!
Now i get this messages
julian@linux-server:/ > perl -e 'use Net::SSLeay'
Can't locate Net/SSLeay.pm in @INC (@INC contains:
/usr/lib/perl5/5.00503/i586-linux /usr/lib/perl5/5.00503
/usr/lib/perl5/site_perl/
Hi
I think its an little Prob. I´am using Suse 6.4 an when i do ./Configure i
get this message. Sorry i´am a little bit newbie in compiling
root@linux-server:/usr/local/openssl-0.9.6a > ./Configure
Usage: Configure [no- ...] [-Dxxx] [-lxxx] [-Lxxx] [-fxxx] [-Kxxx]
[rsar
ef] [no-threads] [no-asm]
I am running an SSL client on AIX and am getting the following error message
on the SSL_connect:
error:24064064:random number generator:SSLEAY_RAND_BYTES:PRNG not seeded.
Does anyone know what this means?
Thanks,
George
__
OpenS
On Wed, Apr 18, 2001 at 02:14:00PM +0100, lucy brophy wrote:
> Apologies for the delay in replying...
>
> Thank you for the help; SSL_connect() was indeed failing with a -1.
> However, the test in the code was for failure with a 0 so I didn't
> notice that until you pointed it out. That code ha
I am also
interested in porting OpenSSL to an EBCDIC platform, namely OS/390.
I'm
doing my development on HP-UX but I'll need to port the code to OS/390 if
possible.
When I get
to the point of working on OS/390, I can help with porting the
OpenSSL
code
if it hasn't been
Apologies for the delay in replying...
Thank you for the help; SSL_connect() was indeed failing with a -1.
However, the test in the code was for failure with a 0 so I didn't
notice that until you pointed it out. That code has now been fixed.
I was unable to extract any useful information by u
SSL_accpt always fails returning error, "no shared cipher"
from server, "handshake failure" from client.
I use sample program src/demos/ssl.
Is there any bug in that sample?
Please, send me answer.
On Wed, Apr 18, 2001 at 11:52:11AM +0200, Jacob Tj?rnholm wrote:
> > On Wed, Apr 18, 2001 at 10:52:04AM +0200, Jacob Tj?rnholm wrote:
> > > I keep receiving this error string:
> > >
> > > error:0001:lib(0):func(0):reason(1)
> > >
> > > The relevant lines are:
> > >
> > > int err = SSL_accept(s
- Original Message -
From: "Lutz Jaenicke" <[EMAIL PROTECTED]>
To: <[EMAIL PROTECTED]>
Sent: Wednesday, April 18, 2001 11:23 AM
Subject: Re: Error messages...
> On Wed, Apr 18, 2001 at 10:52:04AM +0200, Jacob Tj?rnholm wrote:
> > I keep receiving this error string:
> >
> > error:000
On Wed, Apr 18, 2001 at 10:52:04AM +0200, Jacob Tj?rnholm wrote:
> I keep receiving this error string:
>
> error:0001:lib(0):func(0):reason(1)
>
> The relevant lines are:
>
> int err = SSL_accept(ssl);
> int errcode = SSL_get_error(ssl, err);
> printf("%s\n", ERR_error_string(errcode, NULL)
Hi!
I keep receiving this error string:
error:0001:lib(0):func(0):reason(1)
The relevant lines are:
int err = SSL_accept(ssl);
int errcode = SSL_get_error(ssl, err);
printf("%s\n", ERR_error_string(errcode, NULL));
What could be wrong?? This happens both when I try to connect with a brows
Yet another easy fix :
I am feeling quite silly, but openssl is not that easy...
-- openssl smime -verify -in test_message.smime -CAfile
./democa/cacert.pem
this will choose the ca file, which is needed to verify that the message was
signed.
Of course, properly configured, openssl shou
On Tue, Apr 17, 2001 at 08:38:45PM -0400, Greg Stark wrote:
> What you need is the server private key (and of course the password to
> decrypt it). You appear to have it, but I would double check with the
> openssl rsa command. ssldump will silently ignore an incorrect password.
>
> Also, ssldump
26 matches
Mail list logo
