Re: proxy certificate support in openssl 0.9.8

In message <[EMAIL PROTECTED]> on Tue, 22 Mar 2005 15:14:11 -0800, Matthew Rodriguez DSD staff <[EMAIL PROTECTED]> said: MKRodriguez> Specifically else if condition was true. MKRodriguez> ku_reject(issuer, KU_KEY_CERT_SIGN) MKRodriguez> I think this means that my EE cert is not allowed to sign MK

Re: proxy certificate support in openssl 0.9.8

Matthew Rodriguez DSD staff wrote: Richard Levitte - VMS Whacker wrote: In message <[EMAIL PROTECTED]> on Tue, 15 Mar 2005 14:36:57 -0800, Matt Rodriguez <[EMAIL PROTECTED]> said: MKRodriguez> I've looking at the tests in the snapshots for 0.9.8. I MKRodriguez> am trying to figure out what functi

Re: proxy certificate support in openssl 0.9.8

Richard Levitte - VMS Whacker wrote: In message <[EMAIL PROTECTED]> on Tue, 15 Mar 2005 14:36:57 -0800, Matt Rodriguez <[EMAIL PROTECTED]> said: MKRodriguez> I've looking at the tests in the snapshots for 0.9.8. I MKRodriguez> am trying to figure out what functionality regarding MKRodriguez> proxy

OpenSSL 0.9.7f released

-BEGIN PGP SIGNED MESSAGE- OpenSSL version 0.9.7f released == OpenSSL - The Open Source toolkit for SSL/TLS http://www.openssl.org/ The OpenSSL project team is pleased to announce the release of version 0.9.7f of our open source toolki

RE: RAND_Bytes in Windows CE (Pocket PC or smartphone)

The attached code will make it so that the RAND_screen function can be used to seed OpenSSL on CE. It replaces the readscreen function provided with the library in the crypto\rand\rand_win.c function. I have not tested it on non-CE devices, so you may want to #ifdef it in if you will be supportin

Re: I couldn't get PEM_read_RSAPrivateKey to work

On Tue, Mar 22, 2005, Dohanyos Andras Balazs wrote: > Dear List! > > Please excuse me if I ask something obvious or RTFM rated, I was browsing > the > list archives and the openssl.org's docs all day, but couldn't find the > solutuion. > Try browsing the FAQ too... Steve. -- Dr Stephen N. He

I couldn't get PEM_read_RSAPrivateKey to work

Dear List! Please excuse me if I ask something obvious or RTFM rated, I was browsing the list archives and the openssl.org's docs all day, but couldn't find the solutuion. Here's my prob: I reduced my "program" in VC++ 7 to: --

RAND_Bytes in Windows CE (Pocket PC or smartphone)

Hello! I'm writing you because when I call to the function to make a pkcs#7 enveloped data, I get the following error: 1673169562:error:2406064:random number generator:SSLEAY_RAND_BYTES_PRNG not seeded:.\crypto\rand\md_rand.c:503:You need to read the OpenSSL FAQ. I read it but the problems ar

half-duplex socket and openssl

Hi I am programming network client-server system, I use custom protocol and I want to wrap network communication with SSL. The original concept without SSL is: client: ... connect(sfd,...); _write_request(sfd,...); shutdown(sfd,SHUT_WR); _read_response(sfd,...); close(sfd); server:

Re: Build fails on AIX 5.3: Solution included.

Peter Schmiedeskamp wrote : Hi, during the process of compiling OpenSSL 0.9.7e on AIX 5.3, I ran into a compile issue whereby "fips_rand.c" attempted to redefine _XOPEN_SOURCE_EXTENDED which is already defined in AIX's system headers. Here's a patch that worked for me: --- fips_rand.c.orig2005-

Re: problem with revocation

In message <[EMAIL PROTECTED]> on Tue, 22 Mar 2005 15:09:54 +0100, François NOEL <[EMAIL PROTECTED]> said: f.noel> Ok So I must rebuild My CRL list Each time I revoke a f.noel> certificate with f.noel> openssl ca -config openssl.cnf -gencrl -out crl/ca.crl That or at regular intervals (if you e

Re: problem with revocation

Dominique Lohez wrote: François NOEL wrote: Dominique Lohez wrote: François NOEL wrote: Hi I have some problems with revokating certs. when I type : openssl ca -config ./openssl.cnf -revoke ./newcerts/NOEL_Francois.pem -verbose That update me "index.txt" but i don't anything in my crl/ca

Re: EVP API for symetric encryption - problem

In message <[EMAIL PROTECTED]> on Mon, 21 Mar 2005 21:06:05 -0300, Rafael Cividanes <[EMAIL PROTECTED]> said: rafacividanes> I'm doing a little program to encrypt and decrypt rafacividanes> a string using the EVP API. I couldn't understand if I rafacividanes> have to use EVP_DecryptFinal_ex

Re: problem with revocation

François NOEL wrote: Dominique Lohez wrote: François NOEL wrote: Hi I have some problems with revokating certs. when I type : openssl ca -config ./openssl.cnf -revoke ./newcerts/NOEL_Francois.pem -verbose That update me "index.txt" but i don't anything in my crl/ca.crl file [EMAIL PROTE

Re: problem with revocation

Richard Levitte - VMS Whacker wrote: In message <[EMAIL PROTECTED]> on Tue, 22 Mar 2005 14:15:15 +0100, François NOEL <[EMAIL PROTECTED]> said: f.noel> Hi I have some problems with revokating certs. f.noel> when I type : f.noel> f.noel> openssl ca -config ./openssl.cnf -revoke ./newcerts/NOE

Re: problem with revocation

Dominique Lohez wrote: François NOEL wrote: Hi I have some problems with revokating certs. when I type : openssl ca -config ./openssl.cnf -revoke ./newcerts/NOEL_Francois.pem -verbose That update me "index.txt" but i don't anything in my crl/ca.crl file [EMAIL PROTECTED]:/home/fanfan/pu

Re: problem with revocation

In message <[EMAIL PROTECTED]> on Tue, 22 Mar 2005 14:15:15 +0100, François NOEL <[EMAIL PROTECTED]> said: f.noel> Hi I have some problems with revokating certs. f.noel> when I type : f.noel> f.noel> openssl ca -config ./openssl.cnf -revoke ./newcerts/NOEL_Francois.pem f.noel> -verbose

Re: problem with revocation

On Tue, Mar 22, 2005, François NOEL wrote: > Hi I have some problems with revokating certs. > when I type : > > openssl ca -config ./openssl.cnf -revoke ./newcerts/NOEL_Francois.pem > -verbose > > That update me "index.txt" but i don't anything in my crl/ca.crl file > > [EMAIL PROTE

Re: problem with revocation

François NOEL wrote: Hi I have some problems with revokating certs. when I type : openssl ca -config ./openssl.cnf -revoke ./newcerts/NOEL_Francois.pem -verbose That update me "index.txt" but i don't anything in my crl/ca.crl file [EMAIL PROTECTED]:/home/fanfan/public_html/certif_env/es

problem with revocation

Hi I have some problems with revokating certs. when I type : openssl ca -config ./openssl.cnf -revoke ./newcerts/NOEL_Francois.pem -verbose That update me "index.txt" but i don't anything in my crl/ca.crl file [EMAIL PROTECTED]:/home/fanfan/public_html/certif_env/essai_env# openssl c

problem with revocation

Hi I have some problems with revokating certs. when I type :       openssl ca -config ./openssl.cnf -revoke ./newcerts/NOEL_Francois.pem -verbose    That update me "index.txt" but i don't anything in my crl/ca.crl file [EMAIL PROTECTED]:/home/fanfan/public_html/certif_env/essai_env# op

Re: EVP API for symetric encryption - problem

On Tue, Mar 22, 2005, Rafael Cividanes wrote: >But the problem is that the plaintext below has 37 characters! "The > problem will be solved until" = 32. > I see, I was mislead by the comment at the end. > char intext[] = "The problem will be solved until12345"; = 37 !! > > It's very st

Re: EVP API for symetric encryption - problem

But the problem is that the plaintext below has 37 characters! "The problem will be solved until" = 32. char intext[] = "The problem will be solved until12345"; = 37 !! It's very strange for me! Thanks, Rafael Dr. Stephen Henson wrote: On Mon, Mar 21, 2005, Rafael Cividanes wrote: