d2i/i2d for SEQUENCE OF Certificate

Hello, How I may encode/decode of SEQUENCE SIZE (1 .. MAX) OF Ceritificate from/to STACK_OF(X509)? http://www.e-mail.ru ÔÅÄÅÐÀËÜÍÀß ÏÎ×ÒÎÂÀß ÑËÓÆÁÀ E-MAIL.RU http://www.e-mail.ru Òîëüêî äî 31 äåêàáðÿ êîìïàíèÿ Êëþ÷ ÏëàñòÊîíñòðóêòîð ïðåäëàãàåò ñêèäêè äî 32% íà ïëàñòèêîâûå îêíà è äâåðè! Çâîíèòå

X509 certificate verification ?

Hi All, I am using rsj_verify_x509cert() for X509 certificate verification against a CA. This function is derived from eay_verify_x509cert() from ipsec-tools.5.2 rsj_verify_x509cert() takes memory pointer for cert and CA cert instead of directory in eay_check_x509cert(). But i am experiencing a

DTLS and SSL_VERIFY_PEER

Hi, anytime I use the SSL_VERIFY_PEER flag for my DTLS connections (clientside, serverside, or on both sides) I get this error message: d1_both.c(1046): OpenSSL internal errror, assertion failed: s-d1-w_msg_hdr.msg_len + DTLS1_HM_HEADER_LENGTH == (unsigned int)s-init_num Doesn't DTLS

Re: d2i/i2d for SEQUENCE OF Certificate

On Tue, Dec 27, 2005, Vadim Godunko wrote: Hello, How I may encode/decode of SEQUENCE SIZE (1 .. MAX) OF Ceritificate from/to STACK_OF(X509)? If you just want to encode that one structure (as opposed to embedding it in another) then check out and adapt the definition of GENERAL_NAMES

Re: DTLS and SSL_VERIFY_PEER

Hi, anytime I use the SSL_VERIFY_PEER flag for my DTLS connections (clientside, serverside, or on both sides) I get this error message: d1_both.c(1046): OpenSSL internal errror, assertion failed: s-d1-w_msg_hdr.msg_len + DTLS1_HM_HEADER_LENGTH == (unsigned int)s-init_num I just saw that

RE: Newbie question X509 certificate stores

-Original Message- From: [EMAIL PROTECTED] [mailto:owner-openssl- [EMAIL PROTECTED] On Behalf Of Dr. Stephen Henson Sent: 13 August 2005 17:44 To: openssl-users@openssl.org Subject: Re: Newbie question X509 certificate stores On Sat, Aug 13, 2005, Chris Morrison wrote:

0.9.8a: s_client - s_server session renegotiation vs. zlib

Is this the same as the Debian bug reports? ./apps/openssl s_server -key key.pem -cert cert.pem -bugs -accept 12345 ./apps/openssl s_client -bugs -connect localhost:12345 Default compile linux-elf (no zlib) looks good: New, TLSv1/SSLv3, Cipher is DHE-RSA-AES256-SHA Server public key is

problems generating certificates

hi everybody, well finally get install openssl v0.9.8a, now when i try to generate certificates to be used with freeradius (eap-tls or eap-peap) i use these commands to CERTIFICATE AUTHORITY GENERATION: #openssl req -new -x509 -keyout newreq.pem -out newreq.pem -passin pass:clue1 -passout

Re: Newbie question X509 certificate stores

On Tue, Dec 27, 2005, Chris Morrison wrote: I've finally found time to get back to this project. Thanks for the pointers Steve. However, I've tried using the above call d2i_PKCS7(), but it fails to open the store with the errors below. 4777:error:0D0680A8:asn1 encoding

BIO_read is continuously returning -1

I am quite new for the OpenSSL programming. I am using Perl client program and C client program for connecting to the same server. Perl script works fine with the get_https request. But in C, I am getting -1 return value from the server while reading. C program implimentation is same as of