hi,
I exported thawte server CA and verisign class3
certificates from the browser for testing and
converted to C structure using x509 -C -in xxx.cer
xxx.C and added to my SSL client. Following is the
code below.
I am calling this function in a loop to load the
certificates:
unsigned char
selfsigned
certificate which are working too.
For Ex: www.google.com:443 i cannot connect,
i get error (7).
--- Dr. Stephen Henson [EMAIL PROTECTED] wrote:
On Fri, Jun 06, 2003, rajagopalan ramanujam wrote:
hi,
I exported thawte server CA and verisign class3
certificates from
I tried to openSSL_add_all_algotithms instead of
SSL_library_init but i am still seeing the same
issue.
--- rajagopalan ramanujam [EMAIL PROTECTED]
wrote:
hi,
I have defined SSL_library_init rather then
openSSL_add_all_algorithms to save memory.
I have turned on DES,RC4 in chipers
--- Dr. Stephen Henson [EMAIL PROTECTED] wrote:
On Fri, Jun 06, 2003, rajagopalan ramanujam wrote:
hi,
I have defined SSL_library_init rather then
openSSL_add_all_algorithms to save memory.
I have turned on DES,RC4 in chipers and MD5,SHA in
message digest.
Could you
you tell the what Cleanup procedure am i
missing here?
thankyou,
raj
--- Dr. Stephen Henson [EMAIL PROTECTED] wrote:
On Wed, Mar 26, 2003, rajagopalan ramanujam wrote:
hi,
I have tested the SSL handshake but failing when
verifying server certificate
hi,
I have tested the SSL handshake but failing when
verifying server certificate
X509_V_ERR_UNABLE_TO_GET_ISSUER_CERT_LOCALLY. I
generated the self signed CA and used the same CAcert
to verify using openssl verify and also using openssl
s_client -verify 1 -CAfile and it seems to be working
hi brian,
Thanks for your response.
Here is how i use RAND_seed in my client :
while (RAND_status() == 0) {
int rnd = rand();
RAND_seed(rnd, sizeof(rnd));
}
Now Serverhello and certificate is accepted but when
the client tries to generate a RSA key, the control
does not seem to be
hi,
I get a PRNG_NOT_SEEDED error even after i call
RAND_add() function. I am calling the function at the
begining before SSL initialization.
Here is my sample client running on embedded board
(ThreadX os).
void ssl_client (void)
{
int err;
int sd;
struct sockaddr_in sa;
SSL_CTX* ctx;
hi,
I am using a sample client appli on an embedded
platform trying to connect to s_server on the linux.
client code has set cipher(ALL);
there is no client certificate.
client side SSL_connect() return -1;
Its very strange, some times client sends Alert
message with bad mac code and some
:
printf(SSL read problem);
goto end;
}
--- rajagopalan ramanujam [EMAIL PROTECTED]
wrote:
hi,
I am using a sample client appli on an embedded
platform trying to connect to s_server on the linux.
client code has set cipher(ALL);
there is no client certificate
hi,
I am having a problem when reading a certificate and
private key from a memory buffer instead of a file.
i am using d2i_X509(NULL,cert,strlen(cert)) to read
the certificate string which was defined in one of
.pem
file. Should i use SSL_CTX_use_certificate_ASN1
instead??? Please help me.
Thanks steve!!
Can i use these to function calls to convert?
PEM_read_bio_X509
PEM_read_bio_PrivateKey
--- Dr. Stephen Henson [EMAIL PROTECTED] wrote:
On Tue, Mar 11, 2003, rajagopalan ramanujam wrote:
hi,
I am having a problem when reading a certificate
and
private key
I am not setting the server certi and key files. But
Set_chiper_list is called with ALL both on the
server and client side. even then handshake fails when
the server extracts the chiper.
al=SSL_AD_HANDSHAKE_FAILURE;
SSLer(SSL_F_SSL3_GET_CLIENT_HELLO,SSL_R_NO_SHARED_CIPHER);
ssl_server ()
{
:
:
13 matches
Mail list logo
