Bang !! Thanks Dave,
I am agree with Sandy's comment about openssl API's documentation.
Thanks again,
Saurabh
On 7/28/12, Dave Thompson wrote:
>> From: owner-openssl-us...@openssl.org On Behalf Of Saurabh Pandya
>> Sent: Friday, 27 July, 2012 10:21
>
>> On 7/27/12, Saurabh Pandya wrote:
>> >>
Also adding openSSL community into loop.
Thanks Dave. But main use case for me is the trust anchor update case.
I have a certain requirement which goes like this:
I have a client application which runs on my machine and it will attempt to
connect to multiple remote servers.
*At time T0:*
Client ha
> From: owner-openssl-us...@openssl.org On Behalf Of Saurabh Pandya
> Sent: Friday, 27 July, 2012 10:21
> On 7/27/12, Saurabh Pandya wrote:
> >> Do roughly the same thing apps/ca.c does, except you probably don't
> >> need all its options but may want some other options:
> >>
> >> Create an X509
I am just getting started trying to figure out how to set up an SSL
certificate and key with PayPal to use for encrypted payments on my website.
I am totally confused as to what I need to upload to them and how to figure
out if it is correct or not.
I am familiar with programming, but I am having
I am working on a Perl programmatic solution (i.e., no user responses
needed) to a local CA and wonder if I need any configuration files at
all? So far, all the man pages I've looked at seem to have command
args to handle almost everything that seems important (i.e.,
required).
The one exception
Dr. Stephen Henson writes:
> > Integrity test started
> > ERROR:2D06B06F:lib=45,func=107,reason=111:file=fips.c:line=229
> > Integrity test Failed Incorrectly!!
>
> Well that error indicates the fingerprint error. The question is what is
> different about the two build
On Fri, Jul 27, 2012, Puneet Khunteta wrote:
> any Update ?
>
> regards,
> Puneet
>
> On Thu, Jul 26, 2012 at 4:27 PM, Puneet Khunteta
> wrote:
>
> > Hello Stephen,
> >
> > On using the suggestion provided by you , got the following output snippet
> >
> >
> > It shows extusage->data Empty.
> >
On Fri, Jul 27, 2012, Cassie Helms wrote:
> Cassie Helms writes:
>
> > Built fips_algvs on build system and scp'd to target system as suggested.
>
> Hmm. I incorporated building fips_algvs into my build system and ran it from
> the
> rpm install on the target machine. I get different results
Cassie Helms writes:
> Built fips_algvs on build system and scp'd to target system as suggested.
Hmm. I incorporated building fips_algvs into my build system and ran it from
the
rpm install on the target machine. I get different results now -- can anyone
point to what this might indicate, co
On Fri, Jul 27, 2012, Albers, Thorsten wrote:
> Hi,
> I have a problem with the openssl s_server (v1.0.1c) when requesting a client
> certificate. I'm developing my own TLS 1.2 implementation (for embedded
> platforms), and I'm stuck with a problem with using the client certificate. I
> already
That is very helpful. So it looks like there are 2 options, either
selecting the first certificate or using the dialog.
If looks like there is a callback (client_cert_select) on the CAPI_CTX,
which you can get from ENGINE_get_ex_data if you know the index (which
seems to be static to the e_capi.c
It really looks to me like the openssl documentation needs improvement as
well as a better tool besides CA.pl to help people use openssl in common
scenarios. I suspect there is a strong demand for creative private CA
support and we should have a friendly script or cookbook for this available
For Android, you'll need to download the Android NDK toolchain and then pull
down this project:
https://github.com/eighthave/openssl-android
Use NDK to build the project above and that will generate the .so files you can
link to.
For iOS, check out:
https://github.com/x2on/OpenSSL-for-iPhone
On 7/27/12, Saurabh Pandya wrote:
>> Do roughly the same thing apps/ca.c does, except you probably don't
>> need all its options but may want some other options:
>>
>> Create an X509 and set all needed X509_CINF fields in that X509
>> to values that you either extract from the X509_REQ and approve
Hi,
We are planning to integrate OpenSSL to our VoIP product to secure Voice and
Signaling. Our VoIP products runs on multiple platforms like Android, Iphone,
Windows, Windows Mobile, Nucleus etc. I want to know the list of things that I
need to take care to generate the OpenSSL static library
Hi all!
The
last problem is how to create GOST key pair for certificate.
It is
clear how to create RSA keys.
Sample
is here : http://www.openssl.org/docs/crypto/EVP_PKEY_keygen.html
#include
#include
EVP_PKEY_CTX *ctx;
EVP_PKEY *pkey = NULL;
ctx = EVP_PKEY_CTX_new_id(EVP_PKEY_RSA, NULL)
Hi,
An idea out of nowhere : did you investigate the "bad gethostbyaddr" issue ?
There is reverse DNS done. how is your reverse dns set ? can you enter you host
in hosts and see if does help ?
Regards,
From: owner-openssl-us...@openssl.org [owner-openssl-us...@o
Hi,
I have a problem with the openssl s_server (v1.0.1c) when requesting a client
certificate. I'm developing my own TLS 1.2 implementation (for embedded
platforms), and I'm stuck with a problem with using the client certificate. I
already implemented TLS 1.0 earlier, so it's not completely new
Great. Thank You :-)
-Original Message-
From: owner-openssl-us...@openssl.org
[mailto:owner-openssl-us...@openssl.org] On Behalf Of ext Dave Thompson
Sent: Thursday, July 26, 2012 5:49 PM
To: openssl-users@openssl.org
Subject: RE: Using Self-Signed Certificates to create SSL connection.
Il 26/07/2012 23.11, Dr. Stephen Henson ha scritto:
On Thu, Jul 26, 2012, Cristiano Toninato wrote:
This simple test program should print always the same result, but
with openSSL 0.9.8o and gcc 4.5.2 output is
From http://www.schneier.com/code/vectors.txt, cipher bytes should
be 51866FD5B85EC
any Update ?
regards,
Puneet
On Thu, Jul 26, 2012 at 4:27 PM, Puneet Khunteta
wrote:
> Hello Stephen,
>
> On using the suggestion provided by you , got the following output snippet
>
>
> It shows extusage->data Empty.
>
> Regards,
> Puneet
>
> On Wed, Jul 25, 2012 at 4:01 PM, Dr. Stephen Henson
21 matches
Mail list logo
