Hello mathan,
Flexibility
is one of the main strengths of the TLS protocol.Clients and servers can
negotiate cipher suites to meet specific security and administrative
policies. However, to date, authentication in TLS is limited only to
public key solutions. As a result, TLS does
Hello
I am not sure what krb5 has to do with
OpenSSL, can you explain this feature in a little more detail. Is this feature for users of
kerberos to use, or is this for kerberos to use OpenSSL to do some
crypto?
Thanks,
Mathan
had been called by malloc(),
and there was nothing on the stack above that. Very strange.
I think the buffering BIO is a likely suspect.
I'll proceed as if the buffering BIO has been proven guilty and see
where that takes me. :-)
I just tried out the openssl-0.9.7-stable-SNAP-20040219 tarb
Dr. Stephen Henson wrote:
OK, that seems to rule out the low level socket read and write calls being the
cause.
Have you tried this in the latest 0.9.7 snapshot BTW? IIRC some fixes have
been made to buffering BIOs.
I'll try that this evening. After that I'm off to the ocean for the
weekend. My l
On Thu, Feb 19, 2004, murugesan wrote:
> Thanks Dr. Stephen Henson ,
> I got it working through,
> pkey = (EVP_PKEY *)PEM_ASN1_read((char *(*)())d2i_AutoPrivateKey,
> PEM_STRING_EVP_PKEY,
>fp, buff, NULL, NULL);
> May be I am not sure that what I did wa
On Thu, Feb 19, 2004, Paul L. Allen wrote:
> Paul L. Allen wrote:
> >Dr. Stephen Henson wrote:
> >
> >>On Wed, Feb 18, 2004, Paul L. Allen wrote:
> >>
> >>
> >>>[ ... problem statement omitted ...]
> >>>
> >>
> >>
> >>Firstly I hope you are checking the return values from BIO_gets(),
> >>BIO_puts
Paul L. Allen wrote:
Dr. Stephen Henson wrote:
On Wed, Feb 18, 2004, Paul L. Allen wrote:
[ ... problem statement omitted ...]
Firstly I hope you are checking the return values from BIO_gets(),
BIO_puts()
and BIO_flush().
Yes, I am. All are OK up to the hang.
Presumably you are using a b
I have a server that I've written using OpenSSL on Mac OS X that has been running for
a few weeks now. Using the "leaks" command, I am getting the following report:
Leak: 0x003130b0 size=32
0x 0x0030a0c0 0x0030a0e0 0x0030d060
0x 0x1381c88d 0x 0x00010002
Thanks for your help. With this I have solved the problem.
Dr. Stephen Henson wrote:
On Thu, Feb 19, 2004, Manuel Sánchez Cuenca wrote:
But, how can I do it in a C program.
Unfortunately there isn't a function to do this so you'll have to do it the
"ugly way" which involves accessing th
Thaks for your help, I have solved the problem by myself.
Dr. Stephen Henson wrote:
On Thu, Feb 19, 2004, Manuel Sánchez Cuenca wrote:
PKCS7_verify return 0.
What error message do you get from ERR_print_errors_fp(stderr)?
Steve.
--
Dr Stephen N. Henson. Email, S/MIME and PGP keys: see
On Thu, Feb 19, 2004, Manuel Sánchez Cuenca wrote:
> But, how can I do it in a C program.
>
Unfortunately there isn't a function to do this so you'll have to do it the
"ugly way" which involves accessing the structures directly.
Have a look at the print_certs code in apps/pkcs7.c
Steve.
--
Dr
On Thu, Feb 19, 2004, Manuel Sánchez Cuenca wrote:
> PKCS7_verify return 0.
>
What error message do you get from ERR_print_errors_fp(stderr)?
Steve.
--
Dr Stephen N. Henson. Email, S/MIME and PGP keys: see homepage
OpenSSL project core developer and freelance consultant.
Funding needed! Details
But, how can I do it in a C program.
Dr. Stephen Henson wrote:
On Thu, Feb 19, 2004, Manuel Sánchez Cuenca wrote:
Hello all,
Anybody can tell me how can I get all the certificates enclosed in a
PKCS#7 structure.
I may have misread your query. If you want to *pack* certificates into a
How can I get additional certificates?
Dr. Stephen Henson wrote:
On Thu, Feb 19, 2004, Andrzej Posiadala wrote:
When you've already read a PKCS#7 message into memory and you have it
under
PKCS7 * p7 pointer , try this:
STACK_OF(X509) *certs;
X509 * tmpCert;
certs = PKCS7_get0_signers(p7,
Thanks Dr. Stephen Henson ,
I got it working
through,
pkey = (EVP_PKEY
*)PEM_ASN1_read((char *(*)())d2i_AutoPrivateKey,
PEM_STRING_EVP_PKEY,
fp, buff, NULL, NULL);
May be I am not sure that what I did was
correct.
In this case may I know why not to
PKCS7_verify return 0.
Dr. Stephen Henson wrote:
On Thu, Feb 19, 2004, Manuel Sánchez Cuenca wrote:
Hello all,
Know anybody why PKCS7_sign only works ok when I don't put any
additional cert in the "STACK_OF(X509) * certs" param?
How can I add some certificates that I need to verify the PK
But I want to get all the certificates that I have put in the certs
param of PKCS7_sign, not only the signers.
Andrzej Posiadala wrote:
When you've already read a PKCS#7 message into memory and you have it
under
PKCS7 * p7 pointer , try this:
STACK_OF(X509) *certs;
X509 * tmpCert;
certs = PK
17 matches
Mail list logo
