Re: [openssl-users] How to respond to TLS heartbeat in openssl

2017-12-20 Thread Keshava Krishna Bhat K
Hi, Is this controlled by the Makefile? Regards, Keshava. On Wed, Dec 20, 2017 at 6:20 PM, Keshava Krishna Bhat K < keshavkrishn...@gmail.com> wrote: > Hi All, > > I am writing a TLS server that responds to a incoming TLS heartbeat > request. I am using OpenSSL 1.0.2g . > But I am not able to g

Re: [openssl-users] Bleichenbacher Vulnerability

2017-12-20 Thread haris iqbal
Thanks for the response. > Don't do this. Switch to a supported version. There's no way you will > plausibly keep this secure. Bleichenbacher attacks may be the least of > your worries. I am actually using version 1.0.1h. > And of course, as you've already pointed out, that still left timing a

[openssl-users] How to make a digest or hash of sent messages

2017-12-20 Thread Ananthaneni Saitejachowdary
Hi, I am want to send client certificate, client key exchange and client verify in a single handshake message which appears as multiple handshake messages in a single record. But to sent the client verify I need to first make a hash of previous messages(client certificate and client key exchang

Re: [openssl-users] Bleichenbacher Vulnerability

2017-12-20 Thread Bodo Moeller
Hanno Böck : > I was wondering when exactly (the version) was the OpenSSL library > > patched for the Bleichenbacher Vulnerability? > > It was probably fixed some time in the late 90s. However according to > https://www.openssl.org/news/changelog.html > > the countermeasures were accidentally re

[openssl-users] How to respond to TLS heartbeat in openssl

2017-12-20 Thread Keshava Krishna Bhat K
Hi All, I am writing a TLS server that responds to a incoming TLS heartbeat request. I am using OpenSSL 1.0.2g . But I am not able to get the server respond to a hearbeat request. Any clue on what I am missing? The code snippets are here https://stackoverflow.com/ questions/47902283/how-to-respond

Re: [openssl-users] Bleichenbacher Vulnerability

2017-12-20 Thread Hanno Böck
Hi, On Wed, 20 Dec 2017 11:51:39 +0530 haris iqbal wrote: > I was wondering when exactly (the version) was the OpenSSL library > patched for the Bleichenbacher Vulnerability? It was probably fixed some time in the late 90s. However according to https://www.openssl.org/news/changelog.html the c

[openssl-users] Fwd: Create a signed file from detached signature and clear file content

2017-12-20 Thread Antonio Iacono
Hi, assuming I have the following: - data.txt - data.p7s (the detached signature) Can I generate the bundled (p7m) signed file ? I tried: content = BIO_new_file("data.txt", "rb"); signature = BIO_new_file("data.p7s", "rb"); p7 = d2i_PKCS7_bio(signature, NULL); PKCS7_set_detached(p7, 0); bundled