Hello,
I am trying to implement TLS security (in the client side) over a UDP
connection. I have a parallel TCP connection(to the same server) over
which TLS is already done and it works fine. In the same session of my
application I am creating a UDP connection to the same server (UDP
socket) and a
On 22/02/13 11:48, Dr. Stephen Henson wrote:
On Fri, Feb 22, 2013, T J wrote:
On 22/02/13 11:29, Dr. Stephen Henson wrote:
On Fri, Feb 22, 2013, T J wrote:
Does anyone know why this warning is produced when attempting to
call SSL_export_keying_material()?
I have the FIPS module linked in
Hi,
I am building FIPS capable openssl using openss-1.0.1c and openssl-fips-2.0.2.
I successfully built and ran unit tests on openssl-1.0.1c but on 32 bit
machines, big number test(bntest) goes into infinite loop. Can someone please
let me know if this is a known issue on 32 bit machines?
Op
On Fri, Feb 22, 2013, T J wrote:
>
> On 22/02/13 11:29, Dr. Stephen Henson wrote:
> >On Fri, Feb 22, 2013, T J wrote:
> >
> >>Does anyone know why this warning is produced when attempting to
> >>call SSL_export_keying_material()?
> >>
> >>I have the FIPS module linked in and I notice that the Ma
On 22/02/13 11:29, Dr. Stephen Henson wrote:
On Fri, Feb 22, 2013, T J wrote:
Does anyone know why this warning is produced when attempting to
call SSL_export_keying_material()?
I have the FIPS module linked in and I notice that the Makefile in
the openssl-fips-2.0 dir contains the line:
OP
On Thu, Feb 14, 2013, Roar Lien wrote:
> Hi,
> I am trying to build a shared library that statically links to a fips
> enabled openssl library under Linux. When I try to build my shared library
> using:
>
> 'make CC=/usr/local/ssl/fips-2.0/bin/fipsld FIPSLD_CC=gcc'
>
> I get an error saying:
>
On Fri, Feb 22, 2013, T J wrote:
>
> Does anyone know why this warning is produced when attempting to
> call SSL_export_keying_material()?
>
> I have the FIPS module linked in and I notice that the Makefile in
> the openssl-fips-2.0 dir contains the line:
>
> OPTIONS= no-asm no-bf no-camellia
Does anyone know why this warning is produced when attempting to call
SSL_export_keying_material()?
I have the FIPS module linked in and I notice that the Makefile in the
openssl-fips-2.0 dir contains the line:
OPTIONS= no-asm no-bf no-camellia no-cast no-ec_nistp_64_gcc_128 no-gmp
no-ide
Thanks for the help Santhosh. Omitting "fipscanisterbuild" has no effect on
the generation of fips_premain_dso.
- Roar
--
View this message in context:
http://openssl.6102.n7.nabble.com/fipsld-fips-premain-dso-No-such-file-or-directory-tp43733p43877.html
Sent from the OpenSSL - User mailing li
I don't think you need to add "fipscanisterbuild" option to config for building
openssl-fips-2.0.*
Just try this
For Openssl-fips
1) ./config
2) make
3) make install
For Openssl
1) ./config fips
2) make depend
3) make
4) make install
-Original Message-
From: owner-openssl-us...@openss
I am still not able to statically link my application to the fips enabled
openssl under linux. My platform is Windows 8 - VMWare - CentOS 6.3. From
what I described above, the initial problem comes from fipsld not being able
to find the fips_premain_dso executable (it never gets built). I came acro
On Thu, Feb 21, 2013, cellecial wrote:
> Hi,
>
> When I generate a ECC certificate, I wonder what the difference of these
> two functions:
>
> //crypto/asn1/x_pubkey.c
> int i2d_PUBKEY(EVP_PKEY *a, unsigned char **pp);
>
> //crypto/asn1/i2d_pu.c
> int i2d_PublicKey(EVP_PKEY *a, unsigned char **
On 02/21/2013 08:35 AM, The Doctor wrote:
> Anyone having problems accessing ftp.openssl.org as of 21 Feb 2013 noon GMT?
>
We had some issues with that server (bad DNS). They now appear to be
resolved.
-Steve M.
--
Steve Marquess
OpenSSL Software Foundation, Inc.
1829 Mount Ephraim Road
Adamst
Anyone having problems accessing ftp.openssl.org as of 21 Feb 2013 noon GMT?
--
Member - Liberal International This is doc...@nl2k.ab.ca Ici doc...@nl2k.ab.ca
God,Queen and country!Never Satan President Republic!Beware AntiChrist rising!
http://www.fullyfollow.me/rootnl2k Look at Psalms 14 amn
On Thu, Feb 21, 2013, Dave Thompson wrote:
> > From: owner-openssl-us...@openssl.org On Behalf Of Dr. Stephen Henson
> > Sent: Wednesday, 20 February, 2013 19:06
>
> >
> > PKCS#7 and CMS are two similar standards but with a few
> > subtle differences.
>
> Beg to differ. The *first version* of
On Wed, Feb 20, 2013 at 4:10 PM, Andreas Mattheiss
wrote:
>
> s_client doesn't like pipes
This works well for me:
$ echo "GET / HTTP1.0" | openssl s_client -connect example.com:443
It looks like you need something more like a response file.
Jeff
___
On Thu, Feb 21, 2013 at 1:37 AM, Nick wrote:
> On Mon, 2013-02-18 at 08:56 -0500, Jeffrey Walton wrote:
>> > g++-4.7.2 -g -Wall -Wextra -Weffc++ -Wno-missing-field-initializers
>> > -Wctor-dtor-privacy -Wnon-virtual-dtor -Wreorder -Wold-style-cast
>> > -Woverloaded-virtual -Werror -std=c++11
>> -W
Hi everyone!
I wanted to tell everyone my system is now fully up and running with all
components using 1.0.1e.
The only change needed was the static loading of mod_ssl in Apache HTTPD,
as well as using the static libraries for libssl and libcrypt; the other
thing I needed to do was a full recompi
Hi,
I was monkeying around a bit with s_client. Idea is to feed s_client a
file with commands required to STARTTLS, authenticate to the smtp server
and the message itself. I have this file:
--
ehlo hereami
auth login
dfbdffdbZWhhcjU=
dffdddBoYTI=
mail from:
rcpt to
> From: owner-openssl-us...@openssl.org On Behalf Of Santhosh Kokala
> Sent: Wednesday, 20 February, 2013 19:33
> I get this error when I try to convert it to PEM format.
>
>
> [~]$ openssl pkcs7 -in ca_ra_cert.bin -print_certs
> unable to load PKCS7 object
> 140065214732104:error:0906D06C:PEM
> From: owner-openssl-us...@openssl.org On Behalf Of Dr. Stephen Henson
> Sent: Wednesday, 20 February, 2013 19:06
> On Tue, Feb 19, 2013, Ulises S. wrote:
>
> > There is this odd behavior in which one in many signed
> files with PKCS#7 on JAVA won't
> > pass the validation with Openssl, all Op
21 matches
Mail list logo