On 2008.09.22 at 16:37:58 +0200, F. wrote:
> Any way to collect only from HRNG?
You can write your own RAND_METHOD
and encapsulate it in the engine module.
Then you can load this engine via openssl.cnf
and set default rand method to this engine.
Really, this is not very good idea, because hard
> On 2008.09.22 at 16:37:58 +0200, F. wrote:
>
> > Any way to collect only from HRNG?
>
> You can write your own RAND_METHOD
> and encapsulate it in the engine module.
>
> Then you can load this engine via openssl.cnf
> and set default rand method to this engine.
>
> Really, this is not very good
On 2008.11.05 at 00:29:40 -0800, David Schwartz wrote:
> PRNG. This is better for several reasons:
>
> 1) You can rate-limit how much you mix in. Say you mix in 1KB at startup and
> 128 bytes every 10 seconds after that. This will provide the same quality of
> randomness for cryptographic purpose
Hi,
I'm trying to get OpenSSL to build for Windows Mobile 5 but im not
getting anywhere. I think the documentation is out of date.
I get to the stage where I run ms\do_ms and it fails because environment
variables are not defined (OSVERSION).
Im following the instructions in the INSTALL
Hi,
I'm trying to get OpenSSL to build for Windows Mobile 5 but im not
getting anywhere. I think the documentation is out of date.
I get to the stage where I run ms\do_ms and it fails because environment
variables are not defined (OSVERSION).
Im following the instructions in the INSTALL
Hi,
I’m trying to get OpenSSL to build for Windows Mobile 5 but im not getting
anywhere. I think the documentation is out of date.
I get to the stage where I run ms\do_ms and it fails because environment
variables are not defined (OSVERSION).
Im following the instructions in the INSTALL.W
Thank you again David,
It seems that now I understand all the crash scenarios and my server can
deal with them correctly. Thank you for your guidance.
As for the network issue scenarios here are some details about the last
case:
1)The server is running on UNIX, the client is running on windows o
On Tue, Nov 04, 2008, Justin A wrote:
> Hi Dr Stephen,
>
> >>Well the fipslink.pl error is caused by a call to LoadLibraryA() failing on
> >>that DLL. What happens if you call fips_premain_dso test.dll?
>
> X:/fips/fips_premain_dso.exe test.dll
> 2992:error:25078067:DSO support routines:WIN32_LO
Hi,
I noticed a different behaviour between v0.9.8h and v0.9.8i when
printing dates of my certificates and crls.
for example (I patched file crypto/asn1/t_x509.c to print value of
tm->length after the date) :
[EMAIL PROTECTED]/usr/local/src/openssl-0.9.8i/apps/openssl x509 -in
/etc/ssl/stunnel/ser
On November 4, 2008 08:14:51 pm Florent Blanchon wrote:
> Hello,
>
> I'm programming an application to know the number of Unread Mail in my
> Gmail Account.
> It use openssl for the ssl protocol
>
> below are the lines code when I want to communicate :
>
> SSL_read(SSL_fd,buf1,200);i = sprintf
Hi,
> I'm currently using the openssl utilities for computing MD5 sums on
> files. Until now I have always done these operations in the
> main thread.
> Now I want to use the same code in a working thread to be
> able to update GUI while computing the MD5.
>
> The main thread will only upda
Hi.
I'm not an expert on the crypto side of things.
It would seem that you need to detect that the other end isn't
responding for some reason reason, not whether the client is up or not.
This might include an improperly configured switch or router between the
two starting to drop packets which
David,
Sorry for the lack of information, let me try to fill in the blanks.
We're using Perl (IO::Socket::SSL) on the sending side to establish a secure
socket to a C agent on the receiving side. The C agent uses native OpenSSL
APIs.On the Perl side, we create a TCP socket and then do a st
On Wed, Nov 05, 2008 at 11:51:44AM +0100, Christophe Mac? wrote:
> Hi,
> I noticed a different behaviour between v0.9.8h and v0.9.8i when
> printing dates of my certificates and crls.
> for example (I patched file crypto/asn1/t_x509.c to print value of
> tm->length after the date) :
>
> [EMAIL PR
A correction to my previous post. Only the key.pem files are proding the
error in certwatch and being reported as expiring soon. Not the certs.
Thanks,
Rick
__
OpenSSL Project http://www.openssl.o
On Wed, Nov 05, 2008 at 01:35:08PM -0500, Victor Duchovni wrote:
> I could volunteer a patch, but perhaps the OpenSSL team wants to solve
> this in slightly different way.
Looks like the specific issue is now fixed in CVS:
http://cvs.openssl.org/filediff?f=openssl/crypto/asn1/t_x509.c&v1=1.
All -
I am using OpenSSL with memory BIOs for the communication. I have
everything working just fine, until I came across a server that sends
Application data in the final packet of the TLS handshake.
Specifically, Wireshark shows the following in its output :
Change Cipher Spec, Encrypted
> Thank you again David,
You are welcome.
> As for the network issue scenarios here are some details about the last
case:
> 1)The server is running on UNIX, the client is running on windows or unix.
> unplug the client or the server. The server does not report anything!
Logical, nothing has h
> All -
>
> I am using OpenSSL with memory BIOs for the communication. I have
> everything working just fine, until I came across a server that sends
> Application data in the final packet of the TLS handshake.
> Specifically, Wireshark shows the following in its output :
>
> Change Cipher Spec,
Hi all,
Is there any OpenSSL API which will prepare the certificate chain from the
peer certificate given as input ? I have only peer certificate.I
have to build the cert chain from this
Thanks in advance,
Aravind.
Hi,
ext Steven Harris wrote:
Hi,
I’m trying to get OpenSSL to build for Windows Mobile 5 but im not
getting anywhere. I think the documentation is out of date.
It is, last week I send an initial patch, which might need some more
care before it's becoming part of OpenSSL.
See http://marc
21 matches
Mail list logo
