Hi All
Does anybody know how establish connection with two-way SSL authentication in
OpenSSL?
I have read chapter 5 "SSL/TLS programming" in "Network security with openSSL"
book, but couldn't find information about it.
Best regards
xidex
Hi Jeff
There are two GOST algorithms.
GOST
28147-89 is for symmetric block cyphering and GOST R 34.10-2001 for asymmetric
cyphering and digital signing.
OpenSSL support both algorithms.
I mean GOST
R 34.10-2001 here.
Best Regards
Hi all!
The
last problem is how to create GOST key pair for certificate.
It is
clear how to create RSA keys.
Sample
is here : http://www.openssl.org/docs/crypto/EVP_PKEY_keygen.html
#include
#include
EVP_PKEY_CTX *ctx;
EVP_PKEY *pkey = NULL;
ctx = EVP_PKEY_CTX_new_id(EVP_PKEY_RSA, NULL)
Thank you All
Samples were very useful.
I could create certificates request using RSA keys.
But how to create request usign using GOST keys?
Best Regards
Vladislav
Hi all!
How to
create certificate request programmatically via OpenSSL API?
This is the solution for command line utility:
openssl genrsa -out server_key.pem -passout pass:$passwd -des3 1024
openssl req -new -key server_key.pem -passin pass:$passwd \
-passout pass:$passwd -out server_req.p
От: Alexandre Aufrere
Кому: openssl-users@openssl.org
Копия: Abyss Lingvo
Отправлено: пятница, 15 июня 2012 19:16
Тема: Re: OpenSSL and GOST engine issue (statically linked library )
Hello,
IIRC, when you do dynamic linkage, the conf file is parsed and
engine initiated as per
Hi Kopbeen,
I see that linker could not find crypto.dll and lssl.dll.
Are you sure that these libraries were built?
My advise is: Try to build openSSL for Linux using CryptoCOM manual.
You mentioned that you use Mingw32 and Windows.
This manual was written for Linux and there can be some un
Hi All,
My OPENSSL_config(const char *config_name) call was incorrect.
I thought that config_name is the path to configuration file.
But it is config name.
http://www.openssl.org/docs/crypto/OPENSSL_config.html
As usual it is impossible to understand what config_name is it using openssl
document
rect config file
path. It doesn't work.
>>More generally, it's a bad idea to link statically in the context of GOST use.
I can't change it. Static linkage is requirement.
Best Regards
Vladislav
От: Alexandre Aufrere
Кому: openssl-u
release 'e' */
ERR_print_errors(bf_log);
ENGINE_free(e);
return 1;
}
----
From: Abyss Lingvo
Sent: Wednesday, June 13, 2012 5:21 PM
To: openssl-users@openssl.org
Subject:
ne_section]
gost = gost_section
[gost_section]
engine_id = gost
default_algorithms = ALL
CRYPT_PARAMS = id-Gost28147-89-CryptoPro-A-ParamSet
There should not be any dynamic_path parameter in gost_section.
Best regards,
Andrey Koltsov
software developer
14.06.2012 15:25, Abyss Lingvo написал
I have added OpenSSL_add_all_algorithms(); function call to initialization
part but without success.
The same behavior as before.
What's more for dynamically linked version it works without
OpenSSL_add_all_algorithms() call.
Hi all !
This is my first mail to openssl mailing list.
I have a
problem with statically linked openSSL library and GOST crypto engine. Openssl
1.0.0g
I have
simple client/server application using GOST keys and certificates. It works
fine with GOST keys but only if I use dynamically linked
13 matches
Mail list logo
