Hi:
This may not be the right list to ask, if so please redirect me, thanks.
I have been asked to study the possibility of using for authentication
without encryption, ie using TLS_RSA_WITH_NULL_SHA.
Reading the RFC5246, it appears that the server authentication is only
possible through key
Hello,
ok, what I did so far is get the extension by OID. At least I know by now,
whether the extension is present or not:
[...]
X509 *client_cert = X509_STORE_CTX_get_current_cert(ctx);
const char *admoid = 1.3.36.8.3.3;
ASN1_OBJECT *admobj = NULL;
X509_EXTENSION *admext = NULL;
int
Does anyone know if the DH implementation of OpenSSL meets the
SP800-56a requirements?
__
OpenSSL Project http://www.openssl.org
User Support Mailing List
Hello Forum,
I have a series of clients that connect to the same server. I would
like to improve performance by reusing SSL session.
When the 1st client comes in, I create a new SSL object using
SSL_new(). The I go through all the drills. In the end, I call
SSL_shutdown() and then call
Hello Erik,
The authentication occurs during the initial setup of TLS session
(handshake phase). If the peer (or peers in case of mutual authentication) is
authenticated then both sides agree in a common secrets for the session as part
handshake phase. The messages sent in the
I was looking at the OpenSSL source code and some open-source applications
using OpenSSL, and I came across functions like X509_get_issuer_name() and
X509_get_pubkey(), and macros like X509_extract_key(). These seem to be
very useful but I could not find them anywhere in the online OpenSSL
From: owner-openssl-us...@openssl.org On Behalf Of Dr. Stephen Henson
Sent: Thursday, 20 August, 2009 18:34
On Wed, Aug 19, 2009, barcaroller wrote:
I have a PEM-format server certificate that I need to convert to a
binary structure as defined in section 7.4.2. (Server
Certificate) of
From: owner-openssl-us...@openssl.org On Behalf Of
narendra.ku...@thomsonreuters.com
Sent: Tuesday, 18 August, 2009 05:44
I have installed Win32OpenSSL-0_9_7m.exe. am unable to proceed
further on
how to extract the spc and pvk files from the pfx file I have.
I assume you
From: owner-openssl-us...@openssl.org On Behalf Of Erik Norgaard
Sent: Friday, 21 August, 2009 04:22
I have been asked to study the possibility of using for
authentication without encryption, ie using TLS_RSA_WITH_NULL_SHA.
Reading the RFC5246, it appears that the server
authentication
