SOS on open ssl for Java

2008-12-19 Thread Kolli, Sudha
Hi Here is the problem: We have a php code which used open_ssl library to encrypt and decrypt. We are trying to write the equivalent java code for encryption but we are unable to use open_ssl library in Java. Can any of you tell us the solution how to replicate that php into Java

Re: SOS on open ssl for Java

2008-12-19 Thread Rustam Rakhimov
I think You have to create some library using C, and after that adjust it to your Java project imho

config.log not generated.

2008-12-19 Thread hme
Hello, I am trying to build openssl 0.9.8i on a linux distribution. When I run config I get an error. After investigating the error I'm pretty sure I can figure out what is wrong by looking at the config.log file, however none is generated. How do I generate the config.log file that the FAQ sug

Re: SSL Installation issue

2008-12-19 Thread Chris Wilson
Hi Rajnish, On Fri, 19 Dec 2008, Kushwaha, Rajnish IN KRG SISL wrote: > Now we want to communicate with Tomcate 5.5 > > Note : http://hostName:8079/VYOM/servlet/MainServlet/home this is > working but https://hostName:8079/VYOM/servlet/MainServlet/home > > Not working. You cannot use HTTP and

Re: Read a PEM

2008-12-19 Thread Moribius
Thanks a lot, a "cert=X509_new()" was missing! I can now load the certif with the second method, the first one still crashes! -- View this message in context: http://www.nabble.com/Read-a-PEM-tp21056958p21091823.html Sent from the OpenSSL - User mailing list archive at Nabble.com. ___

Question about SHA256 on a RSA* key

2008-12-19 Thread BiGNoRm6969
Hi! I am doing a SHA256 on a RSA* private key. I used the result as a symmetric key for AES encryption. /// int length = RSA_size(rsaPrivateKey); SHA256_CTX sha256ctx; SHA256_Init(&sha256ctx); SHA256_Update(

Re: Question about SHA256 on a RSA* key

2008-12-19 Thread Victor Duchovni
On Fri, Dec 19, 2008 at 07:30:51AM -0800, BiGNoRm6969 wrote: > I am doing a SHA256 on a RSA* private key. I used the result as a symmetric > key for AES encryption. This is a terrible idea. Use PKCS7, S/MIME or CMS. Don't invent your own security protocols or message formats. > /

Re: SOS on open ssl for Java

2008-12-19 Thread Victor B. Wagner
On 2008.12.18 at 11:41:58 -0700, Kolli, Sudha wrote: >Hi > > > >Here is the problem: > > > >We have a php code which used open_ssl library to encrypt and decrypt. > > > >We are trying to write the equivalent java code for encryption but we are >unable to use open_ssl l

RE: Question about SHA256 on a RSA* key

2008-12-19 Thread David Schwartz
> Hi! > > I am doing a SHA256 on a RSA* private key. I used the result as a > symmetric > key for AES encryption. Do you have a specification for how to do this? What ensures that the RSA private key has the same binary representation each time? For example, "3" and "03" represent the same numbe

FIPS 1.2 and Openssl.

2008-12-19 Thread Collins, Jerry
Hello, I've been trying to upgrade our FIPS compliant software to use the 1.2 release. I have to do this for both Windows and Unix. To date I've been working on the Unix side but have had a number of problems. 1) Our original version used fipsld to build our executables. However I've been u

Re: FIPS 1.2 and Openssl.

2008-12-19 Thread Kyle Hamilton
openssl-0.9.8-stable-SNAP-20081219.tar.gz recognizes the 'fips' configuration parameter. The distribution will ALWAYS look for the FIPS files in /usr/local/ssl/fips-1.0/lib/, since that is where they are put when you follow the commands given in the Security Policy precisely (as you mu

Re: FIPS 1.2 and Openssl.

2008-12-19 Thread Victor Duchovni
On Fri, Dec 19, 2008 at 03:22:17PM -0800, Kyle Hamilton wrote: > The distribution will ALWAYS look for the FIPS files in > /usr/local/ssl/fips-1.0/lib/, since that is where they are put when > you follow the commands given in the Security Policy precisely (as you > must, if you want the validation