Re: [openssl-users] openssl-users Digest, Vol 11, Issue 5

> Your attached sample certificate and private key (1024 bit RSA) works fine. > I am reading it with PEM_read_PrivateKey( fp, , NULL, NULL), and also > PEM_read_bio_PrivateKey(pkeybio, NULL, 0, NULL) works. > > If you could post the code or code fragment that creates the problem? >

[openssl-users] d2i_RSAPrivateKey not working on a private key

Hello openssl people, I am trying to read a private key of a certificate into memory using d2i_RSAPrivateKey. I'm able to read the certificate without a problem, but when I pass the private key to d2i_RSAPrivateKey, it fails to parse. I do not see an error message or errno being set -

Validating a server's own certificate using an API

Hi All, I am writing a server that needs to periodically rotate its SSL certificate, with the cert being passed over a network. I would like to write an authentication function so that my server can verify that the incoming certificate was signed by the expected authority and that it is

Possible memory leak or bad allocation strategy in openssl-0.9.8d - known issue?

Hi All, I am testing an Objective-C program that links with openssl-0.9.8d, in a Linux environment. In testing, I noticed that RSS use was creeping up fairly quickly, at the rate of about 50MB per day, under a load of roughly one SSL connection every three seconds. To test whether the

Re: Question about an error: decryption failed or bad record mac

My SSL application recently began throwing the following error whenever I try to connect: SSL error (-1, 1, 336130329) (error:1408F119:SSL routines:SSL3_GET_RECORD:decryption failed or bad record mac) The strange thing is that the same application, running on a different machine, does not

Question about an error: decryption failed or bad record mac

Hi All- My SSL application recently began throwing the following error whenever I try to connect: SSL error (-1, 1, 336130329) (error:1408F119:SSL routines:SSL3_GET_RECORD:decryption failed or bad record mac) The strange thing is that the same application, running on a different

Re: Puzzling 50ms delay between SSL_write and poll response

Thanks, guys- this does indeed seem to be the cause of the problem. I am going to fix my application to send all the data at once. Best, David On Jul 27, 2007, at 5:53 PM, David Schwartz wrote: First off have you tried to merge the application data for the SSL_write() calls into larger

Re: Puzzling 50ms delay between SSL_write and poll response

2007-07-26 20:18:04.375 [3317] GS: Got response from sendDataPending 2007-07-26 20:18:04.376 [3317] GS: Calling poll with timeout 6 2007-07-26 20:18:04.376 [3317] GS: Checking poll results 2007-07-26 20:18:04.376 [3317] GS: calling SSL_write on buffer of length 1281 2007-07-26

Re: Puzzling 50ms delay between SSL_write and poll response

Thank you for the quick reply, and apologies for my less-than-clear message: let me give more details. I am poll-ing with a timeout of 60 seconds, and SSL_write is returning a positive number of bytes read each time through (we always find data well before the timeout). The server logs

Puzzling 50ms delay between SSL_write and poll response

Hello All- I have a Linux server application that calls SSL_write in a loop, and polls the underlying socket using the poll(2) system call. In the loop, the first few calls to poll return immediately with data on the socket, but I'm finding that the last call to poll always takes about