On 2/25/2011 5:03 PM, John R Pierce wrote:
the root certificate in question is not in either Google Chrome's list
of CAs, or in Mozilla Firefox's list.
"AC-SSL da ICPEDU" is the Root CA, issuing a certificate to www.icp.edu.br
The Root Certificate appears to be one locally generated...
CN=AC-
On 02/25/11 4:28 PM, David Schwartz wrote:
On 2/25/2011 11:59 AM, Michael S. Zick wrote:
On Fri February 25 2011, Ricardo Custodio wrote:
Veja www.icp.edu.br
Interesting, I get a "server certificate fails authentication"
from the above address.
You haven't chosen to trust the CA that issue
On 2/25/2011 11:59 AM, Michael S. Zick wrote:
On Fri February 25 2011, Ricardo Custodio wrote:
Veja www.icp.edu.br
Interesting, I get a "server certificate fails authentication"
from the above address.
You haven't chosen to trust the CA that issued it.
Keep in mind that when the person of
On Fri February 25 2011, Ricardo Custodio wrote:
> Veja www.icp.edu.br
>
Interesting, I get a "server certificate fails authentication"
from the above address.
Keep in mind that when the person offering advice can't get it right. . . .
Mike
> rfc
>
> 2011/2/25 Emerson Saito
>
> > Maicon, do
Veja www.icp.edu.br
rfc
2011/2/25 Emerson Saito
> Maicon, do que precisa exatamente? Criar uma AC para gerar certificados
> para serem usados na aplicação?
>
>
> Em 25 de fevereiro de 2011 12:32, Usuário do Sistema
> escreveu:
>
>> Hello, I'm Maicon from Brazil.
>>
>> I'm deployment a project
Maicon, do que precisa exatamente? Criar uma AC para gerar certificados para
serem usados na aplicação?
Em 25 de fevereiro de 2011 12:32, Usuário do Sistema
escreveu:
> Hello, I'm Maicon from Brazil.
>
> I'm deployment a project with freeradiusd EAP-TLS. so I need deploy a CA to
> issued certifi
Hello, I'm Maicon from Brazil.
I'm deployment a project with freeradiusd EAP-TLS. so I need deploy a CA to
issued certification for usuers.
I need help to deploy that with openssl.
thank
Thanks, I missed "!" ...
2011/2/25 lzyzizi
> I think you missed the logic about the function return value.
>
> If SSL_set_fd( ) is ok , it will return "1".
>
> Your code may write this way:
>
> if(* !*SSL_set_fd(si->ssl, sock)){
> int err_tmp = ERR_get_error();
> char buf_tmp[256];
I am confused.
ERR_load_SSL_strings does not exist in the doc on openssl web site. Idem for
*ERR_load_ERR_strings().*
I do not know how to obtain string information when SSL_set_fd( ) fails. I
do not know what to do.
Why do I need to get error function ID ?
Sorry, I am so confused.
2011/2/25 lzy
Ok.
In fact, I develop a secure stack between TCP and an appli which will be
developped by another developper.
I do not want to display error on screen but now I 'd like to resend it to
the appli above. I 'd like to make something wich matchs errors with
integer. example :
error number xxx -> PVKEY
I think you missed the logic about the function return value.
If SSL_set_fd( ) is ok , it will return "1".
Your code may write this way:
if( !SSL_set_fd(si->ssl, sock)){
int err_tmp = ERR_get_error();
char buf_tmp[256];
ERR_error_string_n(err_tmp, buf_tmp, sizeof(buf_tmp));
Hello,
I am implementing IKEv2 Suite test conformance tool to exercise encryption/auth
algorithm AES GCM & GMAC against my customer product.
I was little concerned about the availability of aes_gcm code under openssl for
my use. I downloaded the latest code from http://www.openssl.org/source/,
Sorry,I didn't catch your meaning...
You can useERR_GET_FUNC(l)with the error codeto get the error function ID that
is defined in the module's header(here is ssl.h).You can also useconst char
*ERR_func_error_string(unsigned long e)with the error code to get the string
representation of the erro
SSL_set_fd( ) also fails.
to know what exactly happened, I tried somthing like this :
if(SSL_set_fd(si->ssl, sock)){
int err_tmp = ERR_get_error();
char buf_tmp[256];
ERR_error_string_n(err_tmp, buf_tmp, sizeof(buf_tmp));
log(ERROR, buf_tmp);
fsl_err = FSL_ERROR_CANN
Hello,
Agree, or even:
SSL_load_error_strings();
Best regards,
--
Marek Marcola
owner-openssl-us...@openssl.org wrote on 02/25/2011 03:10:45 PM:
> lzyzizi
> Sent by: owner-openssl-us...@openssl.org
>
> 02/25/2011 03:13 PM
>
> Please respond to
> openssl-users@openssl.org
>
> To
>
>
I thinkERR_load_RSA_strings(void)should be called first.
At 2011-02-25 19:25:51,marek.marc...@malkom.pl wrote:
>Hello,
>
>Maybe you may try something like this:
>
>int log_err(void)
>{
> char buf[256];
> u_long err;
>
> while ((err = ERR_get_error()) != 0) {
> ERR_error_string_n(err, b
Hello,
Maybe you may try something like this:
int log_err(void)
{
char buf[256];
u_long err;
while ((err = ERR_get_error()) != 0) {
ERR_error_string_n(err, buf, sizeof(buf));
printf("*** %s\n", buf);
}
Best regards,
--
Marek Marcola
owner-openssl-us...@openssl.org wrote o
Hello,
I think that if you have only p, q, dmp1, dmq1, iqmp and n = p*q (which is
not
too hard to calculate) you can decrypt message with OpenSSL API.
No d and e.
In attached file you have small example.
There is created private key without e and d and decryption succeeds.
Before decryption you
Hello,
I realize that when my program calls SSL_CTX_use_certificate_file, it
returns an error because the certificate does not match the private key. I
would to process this kind of error. SSL_get_error( ) does not treat this
case. I would like to know what is THE function wich enable me to extract
Hi
I experience a weird problem. I encrypt a file usin PHP OPenSSL and
Rijndael-128. I split the file and encrypt it, calculating a signature for
each block.
When I want to decrypt, it seems to work (I can decrypt and verify several
blocks), but, randomly, the signature checking rerurn 0. Nothing
20 matches
Mail list logo
