You should visit developers site at
http://www.cryptocom.ru/OpenSource/OpenSSL_rus.html
(English version http://www.cryptocom.ru/OpenSource/OpenSSL_eng.html)
You can find all information about GOST in OpenSSL there.
Alexey Eropkin пишет:
(sorry for my english)
Hi all.
I'd like to test latest
I will be out of the office starting 18/06/2008 and will not return until
24/06/2008.
- Support : Call Notes support team (34949)
- Projects : Contact Nabil JAAFOURA.
Regards
*
This message and any attachments (the "messag
Hi. I'd like to get myself removed from the mailing list. What do I do?
Thanks,
Dan
__
OpenSSL Project http://www.openssl.org
User Support Mailing Listopenssl-users@op
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
Gerhard Gappmeier wrote:
| Hi,
Hello Gerhard,
| I try to read subjectAltName, but ASN1_STRING_to_UTF8 seems not to work.
| For the X509_NAME entries the same procedure works,
| but this ASN1_STRING seems to be different.
That is because only in the s
Greetings,
I have followed the procedures for MinGW/Msys/VC build for Windows described
here:
http://www.oss-institute.org/FIPS_733/UserGuide-1.1.1.pdf
and everything worked fines up to this step:
Nmake -f ms\ntdll.mak
I get this error message:
LINK : fatal error LNK1000: Internal error durin
delcour.pierre wrote:
Hello,
Ariel Salomon wrote:
Hi Pierre,
If you are using this certificate chain for an SSL connection, use
SSL_CTX_use_certificate_chain_file which does precisely what you are
asking. If you are just looking for a way to load this chain for
other uses, the source cod
At 01:20 PM 6/16/2008, Michael Sierchio wrote:
RC4 is owned (and trademarked) by RSA Security Inc, but they are no
longer enforcing the patent,
RC4 was never protected by patent, but by trade secret. When the
details of the algorithm were published, Ron Rivest himself suggested
calling the "a
Hi,
I try to read subjectAltName, but ASN1_STRING_to_UTF8 seems not to work.
For the X509_NAME entries the same procedure works,
but this ASN1_STRING seems to be different.
In the debugger I can already see the ASN1_STRING:
pString->length = 43
pString->type = 4
pString->data = "0)†urn:x:bl
Hello,
[EMAIL PROTECTED] wrote on 06/17/2008 03:21:08 PM:
> Hi,
>
> I do know for a fact that part of the Finish message is encrypted. My
question was
> actually if the Message type field is also part of the encrypted part?
In which case, as
> I had pointed out earlier, there is a chance that
The whole Finish message, (ie., Handshake protocols Header indicating
this message as Finished message, and the encrypted Data) is encrypted
and sent.
At the other end the packet is decrypted. This decryption is done
because a Change Cipher Spec message has been received before this
message by the
Same problem.
I wanted to know where is stocked the Server certificate during the SSL/TLS
communication.
For example I have my client who connect to a web service using SSL/TLS.
I wanted that my client get the certificate used by the server to get his
name.
Is it possible?
Thanks,
Maxime.
2008/
Hi,
I do know for a fact that part of the Finish message is encrypted. My
question was actually if the Message type field is also part of the
encrypted part? In which case, as I had pointed out earlier, there is a
chance that the first byte of the encrypted {message_type + message} can be
equal to
Hello,
[EMAIL PROTECTED] wrote on 06/17/2008 02:11:14 PM:
> Yup, that solves it.
>
> Another matter that's been troubling me is the output that I get when I
run the s_server
> program with the debug option. At the end of the handshake, when the
server sends the
> Finished Packet to the clien
Hi,
Actually, the Handshake Message becomes the data for record protocol.
so the Handshake message for Finished message contains a header that
has 20 in the type field to indicate Finished message. This Handshake
message including the Header and Data, is encrypted using the keys
generated during n
Hi,
I am developing a server application that have to process SNI coming from
the connecting clients. I found here:
http://weblogs.mozillazine.org/gerv/archives/2007/08/virtual_hosting_ssl_and_sni.html
that there is a backport available for 0.9.8 version that should be
configured with tls-ext
(sorry for my english)
Hi all.
I'd like to test latest sources from cvs with russian gost algorithm, but I
cannot for example use openssl enc -gost89, programm tells me then, no such
parameter.
And another question: I'd like to test openvpn+openssl with russian cipher
algorithm to crypt traffic b
Yup, that solves it.
Another matter that's been troubling me is the output that I get when I run
the s_server program with the debug option. At the end of the handshake,
when the server sends the Finished Packet to the client, the following
packet dump is obtained.
write to 099EB570 [099FADC0] (5
Hi,
Actually, AES is by default implemented in CBC (Cipher Block Chaining
)mode in TLSv1. Refer RFC 3268.
Since the encryption is done in CBC mode, you will not get the same
encrypted text for identical plain text.
--lakshmi prasanna
On Tue, Jun 17, 2008 at 10:58 AM, jimmy bahuleyan
<[EMAIL PROT
Specifying -lssl is sufficient.
libssl depends on libcrypto and so will be automatically linked indirectly to
your app.
e.g. gcc main.c -lssl -o sample
will work.
On Monday 16 June 2008 15:13:19 vinni rathore wrote:
> Hi..
> first of all thanx as I got success using -lssl option with my file but
19 matches
Mail list logo