Hi,
I have below 2 functions
1. Received the certificate data is DER format and convert to X509 format
RetCode convert_der_to_x509(uint8_t *cert_der, uint32_t cert_len)
{
const unsigned char *bptr = NULL;
X509 *x509 = NULL;
bptr = (unsigned char *)cert_der;
x509 =
Is it because x509 is a local variable in 1 function freed in another?
PK
On Thu, Oct 3, 2013 at 5:22 PM, Sanjay Kumar (sanjaku5)
sanja...@cisco.comwrote:
Hi,
** **
I have below 2 functions
** **
**1. **Received the certificate data is DER format and convert to
X509
So, this does not work either (placing the PEM encoded cert in the variable):
$ export SSL_CERT_FILE=`cat startcom-ca-bundle.pem`
$ echo GET / HTTP\1.1 | openssl s_client -connect api.pagepeeker.com:443
$ echo $SSL_CERT_FILE
-BEGIN CERTIFICATE-
E.g., run
echo GET / | openssl s_client -connect host:port
It does the handshake then stalls until you press a key (which will be left
unused in the buffer when openssl exits), then it sends the input. I guess
the kbhit() in the s_client code is what is waking it up.
I've played around with
Almost certainly something corrupted in your heap. It could be that code
between the create and the free
gets a pointer into a field/element in the X509 (like Subject name, or an
individual AVA in Subject name,
or some particular extension, etc. etc.) and uses that pointer to store
something it
Assuming by get it signed you mean signing the CSR, not getting a cert
issued
from the CSR which many people wrongly think is signing the CSR:
yes OpenSSL has APIs for both X509 (cert) and X509_REQ.
You can read in a cert (PEM or DER), extract fields/extensions from it as
desired
and put
Apologizes for doing this, but does anyone know the answers to these two
questions:
1) How many bytes of entropy does fips_get_entropy() get? 32 (i.e.
security_strength) or 40?
2) Is there any way to combine multiple sources of entropy (such as
/dev/urandom and egd)?
Thank you!
On Tue, Oct 1,