://tools.ietf.org/html/rfc1421>].“
>
>
> It‘s not a bug, it‘s undefined behaviour.
>
> On Wed, 24 Feb 2021 at 20:20 Frank Liu wrote:
>
>> Hi,
>>
>> I noticed openssl 1.0.1 and 1.0.2 can't read a certificate PEM file with
>> base64 line size of mult
gt;
> It‘s not a bug, it‘s undefined behaviour.
>
> On Wed, 24 Feb 2021 at 20:20 Frank Liu wrote:
>
>> Hi,
>>
>> I noticed openssl 1.0.1 and 1.0.2 can't read a certificate PEM file with
>> base64 line size of multiples of 1265. Any other line size seems to be
openssl 1.1.1j. Does anybody
know the bug or PR when that was fixed?
Thanks!
Frank
QQ5M5xopaMzFDWSwKNtBT8x069u0Y+1
> T0dHud/G22q8cVVh8sVcpLUortLxxesEXCddpx/EeuxP+MN/RymHTMrjoAAwCgYI
> KoZIzj0EAwIDSQAwRgIhAO+K+TFCdYxQg7aT+B3wIVa6CCYxM/mL4/WHSrwXujJy
> AiEA7UsbQT/YRKaFDPn/U9jdrJaUmKsqKJvGwN7YVaMGdeo=
> -END CERTIFICATE REQUEST-
--
Frank Migge
http://fm4dd.com | pub...@frank4dd.com
code your own PKCS12
unpack program, just for this specific use case.
I may be wrong but to me it looks doable, just a *lot* of work.
Frank
> Tobias Dussa (SCC) <mailto:tobias.du...@kit.edu>
> Tuesday, February 20, 2018 9:15 PM
> Hi,
>
> On Tue, Feb 20, 2018 at 12:23:14PM +0100
rst.
I am not fully sure, but believe that Extended Key Usage should *not* be
there.
Frank
> Frank Migge <mailto:f...@frank4dd.com>
> Saturday, January 20, 2018 11:29 AM
> Hi Robert,
>
>>> error 26 : unsupported certificate purpose
>
> It seems the cert gets decl
t; I have some problems with new Cisco CAPF certs
What is the authenticating device? Cisco IP phone?
Cheers,
Frank
--
openssl-users mailing list
To unsubscribe: https://mta.openssl.org/mailman/listinfo/openssl-users
32bit systems. It is indirectly related to OpenSSL when system time is
used, converted to or from. Particularly in IOT/ICS industry situations
with scaled down CPUs, long device lifespans and support requirements,
functional validation with future time settings would definitely be a
good idea on the
00Mhz RAM), your e500 PowerPC can't be to far behind. Your numbers
seem to be off by a magnitude. You mentioned using a external HW RNG,
could that be it?
Cheers,
Frank
Jakob Bohm <mailto:jb-open...@wisemo.com>
Wednesday, January 25, 2017 1:10 AM
I'm afraid you will have to look at
11 ff): case SSL_CTRL_SET_TLSEXT_HOSTNAME:
returns 1 on success, and 0 on failure which also writes the cause to
the SSL error handler.
Best wishes
Frank
<mailto:pub...@frank4dd.com><https://www.postbox-inc.com/?utm_source=email&utm_medium=siglink&utm_campaign=reach>
--
openssl-users ma
Hi Nicholas,
Not calling OpenSSL_add_all_algorithms(); at the beginning could cause it?
Cheers,
Frank
Nicholas Mainardi <mailto:mainardinicho...@gmail.com>
Monday, February 01, 2016 8:57 PM
I wrote this small program which takes as input X509 certificates,
base64-encoded, parse th
ely, building a test case around d2i_RSAPrivateKey() to see if
the DER format is valid, e.g. converting the PEM key into DER using the
OpenSSL commandline, and binary-compare with the programs DER data.
openssl rsa -inform PEM -in test-key.pem -outform DER -out key.bin
Best Wishes,
Frank
blem?
d2i_RSAPrivateKey() is not reading PEM, just making sure...
Best wishes,
Frank Migge
David Lobron <mailto:dlob...@akamai.com>
Saturday, October 10, 2015 12:33 AM
Hello openssl people,
I am trying to read a private key of a certificate into memory using
d2i_RSAPrivateKey. I'm able to read
-HSM supports key replication to build some kind of
load-balancing cluster where all HSMs share the same key.
Depending on the load of the server these "small" HSMs might be
suitable. Otherwise you should spent some money for a complete and full
HSM solution.
Regards,
Frank
Am 21.07.201
On Thu, 16 Oct 2014 16:33:28 +0200, Frank Schmirler wrote
> I get the following segfault when trying to send an SSLv3 request to
> the reverse proxy "pound", running on openssl-1.0.1j with SSLv2/3 disabled:
>
> Program received signal SIGSEGV, Segmentation fault.
>
ne 641 (I'm using some patches, so line numbering from my
backtrace is slightly off):
https://github.com/goochjj/pound/blob/stage_for_upstream/v2.7b/http.c#L641
Maybe someone could take a look...
Thanks,
Frank
__
OpenSSL Project
UTF-8
output.
Hope this helps in the right direction,
Frank
From: Bin Lu
Sent: Thursday, September 12, 2013 9:44 AM
To: openssl-users@openssl.org
Subject: FW: multi-byte subject DN display
Re-post … as nobody responded.
If I use “–nameopt utf8” option, the output of the subject is empty even
OID (1.2.840.113549.1.9.15
per RFC4262), but it seems there is no handling for the ASN.1 sequence
underneath.
There is a related http://www.mail-archive.com/openssl-
us...@openssl.org/msg58514.html">old thread from 2009 with the recipe
for manually adding the SMIME Capabilities to open
erstand it wouldn't work with either openbsd or linux cryptodev. The
attached patch fixes the issues found and makes some optimizations for
cryptodev-linux (without sacrificing openbsd cryptodev support)."
Regards,
Frank
> -Original Message-
> From: owner-openssl-us...@openssl
382) at
bf_buff.c:494
#15 0xb6ecdcb4 in BIO_gets (b=0x99bb8, in=0x95bb0 "N", inl=16383) at
bio_lib.c:313
#16 0x000391f0 in ?? ()
#17 0x000391f0 in ?? ()
Backtrace stopped: previous frame identical to this frame (corrupt stack?)
Is this a bug in the c
quot;, size=16382) at
bf_buff.c:494
#15 0xb6ecdcb4 in BIO_gets (b=0x99bb8, in=0x95bb0 "N", inl=16383) at
bio_lib.c:313
#16 0x000391f0 in ?? ()
#17 0x000391f0 in ?? ()
Backtrace stopped: previous frame identical to this frame (corrupt stack?)
Is this a bug in the c
Hi!
> > Out of my head, there's ISO7816-6 certificates, used at least in eID
> > projects (EAC passports).
We built support for Card Verifiable Certificats (CV-Certificates) into
OpenSSL:
http://openpace.sourceforge.net/
This format is used in the EAC passports.
Cheers, Frank
I have since also reproduced this error when compiliing with openssl-1.0.0e
(LATEST).
Is there no one out there having challenges with this sort of compile?
Alternatives for getting this working on a 64-bit system?
Regards,
Frank
From: owner-openssl-us
some information out here -
http://rt.openssl.org/Ticket/Display.html?id=2466&user=guest&pass=guest . Does
anyone know in which release the formal patch noted in that link was included?
Regards,
Frank
This message is intended only for the use of the
r approach would be to strip tag and length from the octet string
with ASN1_get_object. Then use ASN1_put_object to wrap the data into a
sequence.
Cheers, Frank.
pgpbsvk6I8Aoe.pgp
Description: PGP signature
erialized ?
No. Please get familiar with the man pages. See for example
http://www.openssl.org/docs/crypto/DH_generate_key.html
http://www.openssl.org/docs/crypto/BN_bn2bin.html
Greets, Frank.
pgpkx1MbnNDuu.pgp
Description: PGP signature
Hi!
> How to serialized dh->pub_key ? I know that i2d_DHparams(const_dh, &dhbuf);
> serialize dh structure pointed by const_dh but I did not find a function to
> serialize just dh->pub_key
Use BN_bin2bn.
Greets, Frank.
pgp4g55TCrPOo.pgp
Description: PGP signature
ncing to openssl stable, because
everything is already included in openssl HEAD.
Anyway, since I am using CMAC, I need the patch myself. You can find a
more recent patch to stable here:
http://openpace.svn.sourceforge.net/websvn/openpace
Greets, Frank.
pgp0bQsyVFW4o.pgp
Description: PGP signature
nRet is 0 and pOCSPResponse is NULL.
The connect and all before seems to go well.
What could be the problem for this?
Best regards
Frank Wockenfuß
__
OpenSSL Project http://www.openssl.org
User S
nRet is 0 and pOCSPResponse is NULL.
The connect and all before seems to go well.
What could be the problem for this?
Best regards
Frank Wockenfuß
__
OpenSSL Project http://www.openssl.org
User S
On Mon, Sep 14, 2009, Frank Mcgeough wrote:
I'm using openssl on a Symbian device. I load in my own certificate
file
and am able to verify my server connection. However, on a newer
device (
brand new ) there has been a change in what is provided in the
openssl dll
(I can see a byte
I'm using openssl on a Symbian device. I load in my own certificate
file and am able to verify my server connection. However, on a newer
device ( brand new ) there has been a change in what is provided in
the openssl dll (I can see a byte level difference) and now I am
getting an error when
A big thanks goes out to Ben Henderson for contributing the wrapper
for the SSL library.
Enjoy,
-Frank
__
OpenSSL Project http://www.openssl.org
User Support Mailing List
cense:
git://openssl-net.git.sourceforge.net/gitroot/openssl-net/openssl-net
Preliminary support for mono has been added and has been tested on
debian x64 and Mac OS X 10.5.
A big thanks goes out to Ben Henderson for contributing the wrapper
for the SSL library.
Enjoy,
-Frank
Dave,
This explains the problems I have.
Indeed, it appears I need to install my home generated certificate in a
TrustManager.
I indeed get the SSL exception on the java side.
Thanks for the pointer
Frank
On 02/06/2009 03:07, "Dave Thompson"
wrote:
>> From: owner-openssl-u
up on the JAVA side
? I am using JAVA JRE 1.6
Thanks in advance.
Frank
__
OpenSSL Project http://www.openssl.org
User Support Mailing Listopenssl-users@openssl.org
Automated
lying the
facilities offered by the openssl library to my own programs.
BTW: It's highly unlikely that I'll be able to reply to any new postings to
this thread for the coming 3 weeks. Please don't take silence from me
during that period for impoliteness or lack of interest.
Cheers
y, but I think I'm still looking for a general
(algorithmic) solution
Cheers,
--
Frank B. Brokken
Center for Information Technology, University of Groningen
(+31) 50 363 9281
Public PGP key: http://pgp.surfnet.nl
Key Fingerprint: 8E36 9F
--
Any suggestion I receive will of course greatly be appreciated.
Cheers,
--
Frank B. Brokken
Center for Information Technology, University of Groningen
(+31) 50 363 9281
Public PGP key: http://pgp.surfnet.nl
Key Fingerp
0
SUMMARY:Declined: OWASP Hartford: February 2009 (Open Web Application Secur
ity Project)
UID:04008200E00074C5B7101A82E0086015A2316121C901000
010008755599A2D01DB488364749052F323A6
ATTENDEE;ROLE=REQ-PARTICIPANT;PARTSTAT=DECLINED;RSVP=TRUE;CN="Frank Pirillo
Hi There,
I am building a web service client application that uses
openSSL for web service https/SSL communication. In order
to avoid the patent issue for the portion of openSSL, I
build the openSSL libraries myself using ./config no-idea
no-mdc2 no-rc5. All is working fine as far as I am
c
"Subject Alternative Name" field.
I've programmed ASM, C, C++, .dlls, so generally know my way around code,
but have no experience with crypto infrastructure. I'd appreciate anyone's
suggestion for the appropriate sequence of openssl incantations to achieve
my objective
should notify about this. So this post is the next best thing, I hope.
HTHs,
Frank J. Iannarilli [EMAIL PROTECTED]
Aerodyne Research, Inc., 45 Manning Road, Billerica, MA 01821 USA
www.aerodyne.com/cosr/cosr.html
something else? Any workarounds? My intent is to use
x509 to reformat one of the certs/pkcs7, so that an email program can
better ingest it.
Regards,
Frank J. Iannarilli [EMAIL PROTECTED]
Aerodyne Research, Inc., 45 Manning Road, Billerica, MA 01821 USA
www.aerodyne.com
Hi Patrick,
Thank you for that hint.
I'll have a look at it.
Best regards
Frank Wockenfuß
> -Ursprüngliche Nachricht-
> Von: [EMAIL PROTECTED]
> [mailto:[EMAIL PROTECTED] Im Auftrag von
> Patrick Patterson
> Gesendet: Dienstag, 6. Mai 2008 15:05
> An: op
distribution points out of the X509 extensions?
Best regards
Frank Wockenfuß
__
OpenSSL Project http://www.openssl.org
User Support Mailing Listopenssl-users@openssl.org
Automated List
cate purpose'.
Anyone an idea?
I use OpenSSL 0.9.8e with Visual C++ 2005.
Best regards
Frank Wockenfuß
__
OpenSSL Project http://www.openssl.org
User Support Mailing List
sation are
called and afterwards someone constructs and initialises again and gets the
error.
So now everything works fine.
Thanks to all for the help.
Frank
> -Ursprüngliche Nachricht-
> Von: [EMAIL PROTECTED]
> [mailto:[EMAIL PROTECTED] Im Auftrag von
> Steffen DETTMER
&
Thank you for that hint.
I will try to rebuild the class as singleton. This could help, but isn't really
nice.
Best regards
Frank
> Wockenfuß wrote:
> > Hi all,
> >
> > I have written a class in C++ to easily access functions
> from OpenSSL from our products.
= mysecret
), to higher the security level.
Thank you for your patience and for your very qood work!
Kind regards,
Frank Wendel
t what could be wrong?
The destructor is called at least once before the constructor is called again
and X509_verify_cert is called.
Thanks in advance.
Frank Wockenfuß
__
OpenSSL Project http://
I'm wrong a someone can tell me the right version, but this is how we did
it.
Best regards
Frank
Von: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] Im Auftrag von shankar
ks
Gesendet: Dienstag, 1. April 2008 11:36
An: openssl-
It seems to go in the same direction.
I have a CMS-file(PKCS7) that was created while signing with a smartcard. It
also holds a X509 certificate with the public key of the signer. And it also
holds the signature.
Maybe you could tell me more details so I can try if this would help
Frank
No, not the algortihm. The created signature content, the data I need for
verification.
BTW, I've just found a way to get the signing time out of the PKCS7-object.
Frank Wockenfuß
> -Ursprüngliche Nachricht-
> Von: [EMAIL PROTECTED]
> [mailto:[EMAIL PROTECTED]
t the information about the time, the signature
was created and the signature itself, that was put inside the file.
Please can anyone give me some hints or code examples, what I need to do to get
these informations.
I have a filled PKCS7-object.
Frank Wock
Hi,
I'm working my way thru the makefile and need some info on the flags
used.
I've set L_ENDIAN, but I'd like to set a 32 bit flag. This is a non
POSIX OS as well.
Ideas?
Thx
- - - - - Appended by Scientific Atlanta, a Cisco company - - - - -
This e-mail and any attachments may contai
on working
under Windows? Should I be using cygwin? Or other alternatives?
I'm reading the GNU Make manual 3.81, but am having issues with
successfully invoking a compilation.
Thanks,
Frank
- - - - - Appended by Scientific Atlanta, a Cisco company - - - - -
This e-mail and any
what may be involved to get a compilation working
under Windows? Should I be using cygwin? Or other alternatives?
I'm reading the GNU Make manual 3.81, but am having issues with
successfully invoking a compilation.
Thanks,
Frank
- - - - - Appended by Scientific Atlanta, a Cisco comp
You're right and I haven't seen it til now.
This could be the problem. This means that the OpenSSL check works fine, but
the signature generation has sometimes a problem.
Thank you very much for now.
> -Ursprüngliche Nachricht-
> Von: [EMAIL PROTECTED]
> [mailto:[EMAIL PROTECTED] Im Auf
You're right and I haven't seen it til now.
This could be the problem. This means that the OpenSSL check works fine, but
the signature generation has sometimes a problem.
Thank you very much for now.
> -Ursprüngliche Nachricht-
> Von: [EMAIL PROTECTED]
> [mailto:[EMAIL PROTECTED] Im Auft
BE D8 AE 3B B6 4C 4B BE 52
7A C9 03 A3 75 4F 01 08 49 71 70 7C 1E FC F8 02 08 3D 7D 6B F1
Best regards
Frank
> -Ursprüngliche Nachricht-
> Von: [EMAIL PROTECTED]
> [mailto:[EMAIL PROTECTED] Im Auftrag von Dr.
> Stephen Henson
> Gesendet: Montag, 11. Februar 2008 15:15
Hi there,
I am looking for a previous version of OpenSSL, FIPS 1.0, but is not
available at the download site.
Does anyone know if it is still available for download?
Thanks for any help,
Frank
__
OpenSSL Project
gards
Frank Wockenfuß
__
OpenSSL Project http://www.openssl.org
User Support Mailing Listopenssl-users@openssl.org
Automated List Manager [EMAIL PROTECTED]
Hi all,
I'm looking for some code examples to realise a X.509 certificate verification
over OCSP with C++.
Is there something to find in the Open SSL package? Or are there other places
were I can find something?
Thanks in advance.
Frank Wock
time with the same card and program. All other signatures work fine.
Hope someone can help me.
Best regards
Frank Wockenfuß
__
OpenSSL Project http://www.openssl.org
User Support Mailing
1,153,024 openssl.exe
7 File(s) 3,375,039 bytes
2 Dir(s) 26,369,331,200 bytes free
Attached is my entire openssl.conf file
Thanks in advance for all the help.
Frank
- Original Message
From: Bernhard Froehlich <[EMAIL PROTECTED]>
To: openssl-users@openss
NTABLE:'Prosoft'
organizationalUnitName:PRINTABLE:'DS'
commonName:PRINTABLE:'Frank'
emailAddress :IA5STRING:'[EMAIL PROTECTED]'
Certificate is to be certified until Nov 5 12:52:03 2008 GMT (365 days)
Sign the certificate? [y/n]:y
failed to update datab
-
Country Name (2 letter code) [AU]:US
State or Province Name (full name) [Some-State]:Connecticut
Locality Name (eg, city) []:Burlington
Organization Name (eg, company) [Internet Widgits Pty Ltd]:Prosoft
Organizational Unit Name (eg, section) []:DS
Common Name (eg, YOUR name) []:Frank
Email Address
phrase for C:\CA\private\CAkey.pem:". Is it
looking for a value from a previous step?
Any help would be greatly appreciated,
Frank
~
Here's the values entered and the error message.
C:\Program Files\OpenSSL>ca server
Simple CA utility
Jim Fox schrieb:
>
>
>>
>> Is it possible to have one (self-signed) SSL certificate for a server
>> that is known as foo.bar.org (internal LAN name) and bar.org (FQDN on
>> the Internet)? A wildcard certificate doesn't seem to be a solution
>> since it seems to be a subdomain only solution.
>>
>
That's it!
Many thanks for the help!
Frank Wockenfuß
-Ursprüngliche Nachricht-
Von: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] Im Auftrag von Marek Marcola
Gesendet: Donnerstag, 2. August 2007 18:25
An: openssl-users@openssl.org
Betreff: Re: AW: RSA_public_decrypt problem U
the orignial hash inside the decrypted content. It lays on the last 32
byte. Before this is mostly FF. How do I surely get the original hash out of
the content?
Frank Wockenfuß
-Ursprüngliche Nachricht-
Von: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] Im Auftrag von Marek Marcola
ify I get now the reason 155 as error description.
If I call RSA_public_decrypt I get a NULL pointer access violation.
What can I do now?
Could the NULL pointer exception be because of missing structure entries to RSA?
I just do
RSA_new()
and the set only n and e.
Frank Wock
Maybe the leadings 00 is the problem with both?
Frank Wockenfuß
-Ursprüngliche Nachricht-
Von: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] Im Auftrag von Wockenfuß, Frank
Gesendet: Donnerstag, 2. August 2007 16:36
An: openssl-users@openssl.org
Betreff: AW: AW: AW: AW: AW
N:
008796FB4EAAB5FCC21619608ECB34D4BD82D062BF136A54E7E0BF6B2991C2F0F93A161930D650AF939C8282431D291D0E6E9F69A09AF091345D60439569C5CB5ECA566740B6A69FE4BBF2DB9CC03786AEDF8F9522EB7F6096A1B900140E6AA7AF55198B87E68A69546631E9EF90666984123F5364BE2EA6E067BBAA8831A34B15
E:
004081
Frank Wockenfuß
RSA_NO_PADDING leads to the same error.
Frank Wockenfuß
-Ursprüngliche Nachricht-
Von: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] Im Auftrag von Marek Marcola
Gesendet: Donnerstag, 2. August 2007 15:05
An: openssl-users@openssl.org
Betreff: Re: AW: AW: AW: RSA_public_decrypt problem
Thanks,
This test programs works fine, so I think I need to check my signatures (as
David Schwartz mentioned too).
Best regards,
Frank Wockenfuß
-Ursprüngliche Nachricht-
Von: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] Im Auftrag von Marek Marcola
Gesendet: Donnerstag, 2. August
Same mistake as before: 119 means RSA_R_WRONG_SIGNATURE_LENGTH
Frank Wockenfuß
-Ursprüngliche Nachricht-
Von: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] Im Auftrag von David Schwartz
Gesendet: Mittwoch, 1. August 2007 13:41
An: openssl-users@openssl.org
Betreff: RE: RSA_public_decrypt
I tried it and now I get 119 (RSA_F_RSA_VERIFY).
Does this mean that it just failed. How can I get extended error informations?
Frank Wockenfuß
-Ursprüngliche Nachricht-
Von: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] Im Auftrag von David Schwartz
Gesendet: Mittwoch, 1. August 2007 13
I do
ENGINE_load_builtin_engines();
before calling the decrypt function. There is no other engine attached, I use
the standard engines from OpenSSL 0.9.8e.
Are there other way to verify the signature with only the public key?
Frank Wockenfuß
-Ursprüngliche Nachricht-
Von: [EMAIL
This is the first call in the engine and the set of n and e doesn't raise any
error (I've just tested it). The error occurs on RSA_public_decrypt.
Frank Wockenfuß
-Ursprüngliche Nachricht-
Von: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] Im Auftrag von David Schwartz
Gesendet
I understood, that n should be the modulus and e the exponent.
pRSA->n = BN_bin2bn( pPublicModulus, nPublicModulusLength, NULL );
pRSA->e = BN_bin2bn( pPublicExponent, nPublicExponentLength, NULL );
Frank Wockenfuß
-Ursprüngliche Nachricht-
Von: [EMAIL PROTECTED] [mailto:
I've tested it and it looks good. I get back the values I have set.
Frank Wockenfuß
-Ursprüngliche Nachricht-
Von: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] Im Auftrag von Marek Marcola
Gesendet: Mittwoch, 1. August 2007 11:18
An: openssl-users@openssl.org
Betreff: R
It should be
pRSA->n = BN_bin2bn( pPublicModulus, nPublicModulusLength, NULL );
pRSA->e = BN_bin2bn( pPublicExponent, nPublicExponentLength, NULL );
Frank Wockenfuß
-Ursprüngliche Nachricht-
Von: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] Im Auftrag von Wockenfuß, Frank
Ge
Yes, I'm trying to verify a RSA signature.
What can I do to verify it correctly?
Frank Wockenfuß
-Ursprüngliche Nachricht-
Von: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] Im Auftrag von David Schwartz
Gesendet: Mittwoch, 1. August 2007 11:01
An: openssl-users@openssl.org
Betref
ave to use the public key.
This is only for verification purpose.
Frank
-Ursprüngliche Nachricht-
Von: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] Im Auftrag von David Schwartz
Gesendet: Mittwoch, 1. August 2007 10:22
An: openssl-users@openssl.org
Betreff: RE: RSA_public_decrypt problem
&g
to the structure are read from a
smartcard.
Thanks in advance
Frank Wockenfuß
__
OpenSSL Project http://www.openssl.org
User Support Mailing Listopenssl-users@open
I will try it and ask again if there are more questions.
Thank you
Frank Wockenfuß
_
Von: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] Im Auftrag von Hien Truong Thu
Gesendet: Montag, 30. Juli 2007 13:32
An: openssl-users@openssl.org
Betreff: Re: Detached Signature
Hi,
Yes, you
Hi,
thanks for the hint.
Do I always need to use a private key to create a PKCS7 format?
If yes, how do I decrypt the PKCS7 format on the verification side?
Frank Wockenfuß
_
Von: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] Im Auftrag von Hien Truong Thu
Gesendet: Montag, 30. Juli
Hello everybody,
I want to save a detached signature and I don't know what structure to use and
how to fill it. The signature is created by a smartcardterminal and I want to
save it in a standardized way for later verification.
Any suggestions?
Frank Wock
plete CMS file?
Hope someone can help me or send me some sample code.
Thanks in advance,
Frank Wockenfuß
__
OpenSSL Project http://www.openssl.org
User Support Mailing Listopen
In the doc of SSL_CTX_set_cert_store I only found the hint, that the doc
of the X509_STORE object are not ready. But I will connect my own to
OpenSSL. When will be the doc of the X509_STORE object ready, so that I
can continue my library?
Thanks
Frank
smime.p7s
Description: S/MIME Cryptographic
Sorry I have found my error.
I have written the cert in the wrong format into my cert storage.
The code I have posted work's correct.
I thing it was to late yesterday.:(
Thanks.
smime.p7s
Description: S/MIME Cryptographic Signature
Hello, I am working on my own cert storage.
At the part to feed OpenSSL with the cert's I have the problem that
PEM_read_bio_X509 returns every time NULL.
Here the code that I have used:
BIO *buffer = BIO_new(BIO_s_mem());
X509 *cert;
QByteArray data;
data=QByteArray::fromBase64(element.text().to
[EMAIL PROTECTED] schrieb:
> Hello,
>
> The following URL gives information about x509 certificate management.
>
>
> http://www.columbia.edu/~ariel/ssleay/x509_certs.html
>
> Regards,
>
Thanks this look very good.
smime.p7s
Description: S/MIME Cryptographic Signature
Some news about the crash.
On Windows this code will work:
EVP_MD_CTX Hash;
EVP_DigestInit_ex(&Hash,EVP_sha256(),NULL);
On Linux it be this to work:
EVP_MD_CTX Hash;
EVP_MD_CTX_init(&Hash);
EVP_DigestInit_ex(&Hash,EVP_sha256(),NULL);
Why must I call EVP_MD_CTX_init(&Hash) only under Linux???
smim
Hello again my app run fine on windows, but crash on Linux at the call
of EVP_DigestInit_ex(&Hash,EVP_sha256(),NULL)
any special on Linux?
gdb tell me:
#0 0x4124a26d in engine_unlocked_finish () from /lib/libcrypto.so.6
#1 0x4124a3bb in ENGINE_finish () from /lib/libcrypto.so.6
#2 0x4125febe in
Now it work. I have forgotten to initialize the pointer:(
I think I was blind because of the hundreds of code lines.
smime.p7s
Description: S/MIME Cryptographic Signature
Kaushalye Kapuruge schrieb:
>>
> All you have to do is to declare an EVP_CIPHER_CTX.
> See the example code.
>
> EVP_CIPHER_CTX ctx;
> EVP_CIPHER_CTX_init(&ctx);
> EVP_EncryptInit_ex(&ctx, EVP_bf_cbc(), NULL, key, iv);
>
> See the manual page for more in
Hello, when I call EVP_CIPHER_CTX_init() in my application it crash.
Must I call anything before?
Thanks,
Frank
smime.p7s
Description: S/MIME Cryptographic Signature
1 - 100 of 227 matches
Mail list logo
