On Thursday, 9 January 2020 17:42:47 CET, Jerry Blasdel wrote:
Here is more information. On the server that is having this issue, prior
to the FIPS_drbg_generate errors (these show up every time that worker pid
is selected to serve a request) we have a single OpenSSL error that shows
up in the
>Once we get that error, every time we try to serve a request in Apache using
>that pid, it errors out. So, it seems like something randomly corrupts that
>PID. Can someone provide some information about FIPS_CHECK_EC: pairwise test
>failed.
Once FIPS detects an error, it will stay stuck in e
Here is more information. On the server that is having this issue, prior
to the FIPS_drbg_generate errors (these show up every time that worker pid
is selected to serve a request) we have a single OpenSSL error that shows
up in the logs.
SSL Library Error: error:2D06A07F: FIPS routines
I have several servers configured the same, running Apache 2.4X/OpenSSL1.02
fips-enabled.
On one server we periodically get the following errors in the Apache logs:
SSL Library Error: error:xx:FIPS_drbg_generate:selftest failed. In
some cases, the server continues to service requests, but in
Thank you to everyone that has weighed in on my question. Unfortunately, I
have yet to find an answer that I'm fully satisfied with.
I'm trying a different approach: I would like to create a sample encrypted
Ethereum private key that shares the same 132 character PEM format as the
string I'm tryi
Hi Daniel,
>Option #1 from the possibilities you mentioned below seems to be the most
logical to me.
Thank you, that's very helpful.
Thanks,
Chris
On Mon, Jan 15, 2018 at 1:29 PM, Sands, Daniel wrote:
> On Sun, 2018-01-14 at 18:26 -0500, Chris B wrote:
>
> Hi Matt,
>
> >If you *are* using 1.1.
On Sun, 2018-01-14 at 18:26 -0500, Chris B wrote:
Hi Matt,
>If you *are* using 1.1.0 then the default digest was changed between 1.0.2 and
>1.1.0.
Awesome thought, but I'm also using 1.0.2:
$ openssl version
OpenSSL 1.0.2k-fips 26 Jan 2017
(I also tried adding -md md5 to the previous command,
Hi Matt,
>If you *are* using 1.1.0 then the default digest was changed between 1.0.2
and 1.1.0.
Awesome thought, but I'm also using 1.0.2:
$ openssl version
OpenSSL 1.0.2k-fips 26 Jan 2017
(I also tried adding -md md5 to the previous command, but I got the same
error message).
Thanks,
Chris
On 14/01/18 15:26, Chris B wrote:
> I'm trying to help someone recover his password for an older format
> ethereum encrypted private key (EPK). My plan has been to use his best
> guess at the password to brute force the actual password.
>
> The EPK is a 132 character string, and it looks somethi
>Any chance this is data corruption?
Brilliant! You caught me. Although this key is encrypted I wasn't
comfortable making it public on the interwebs. So, I randomly changed
several of the characters. If I run openssl base64 -d... on the *actual*
key it does indeed begin with Salted__:
$ opens
> On Jan 14, 2018, at 10:26 AM, Chris B wrote:
>
> I'm trying to help someone recover his password for an older format ethereum
> encrypted private key (EPK). My plan has been to use his best guess at the
> password to brute force the actual password.
>
> The EPK is a 132 character string, a
Hi Rich,
Thank you very much for the reply.
I get the same error message using -aes256 as -aes-256-cbc
/usr/bin/openssl enc -d -aes256 -a -in enc_private_key.txt -out
recovered.key -pass pass:TheBig7ebowski
bad decrypt
140383648536480:error:0606506D:digital envelope
routines:EVP_DecryptFinal_
For CBC the encrypted text will be a multiple of the cipher size. So your use
of CBC is wrong. The quoted post uses aes256; you were using aes-cbc
--
openssl-users mailing list
To unsubscribe: https://mta.openssl.org/mailman/listinfo/openssl-users
I'm trying to help someone recover his password for an older format
ethereum encrypted private key (EPK). My plan has been to use his best
guess at the password to brute force the actual password.
The EPK is a 132 character string, and it looks something like this:
U2FsdGV0X185M9YAa/27pmEvFzC5pqLI
icate using the PKCS7_decrypt( )
> function. The error string is:
>
> OPENSSL error:21072077:PKCS7 routines:PKCS7_decrypt:decrypt error
>
> This only happens in FIPS mode so we suspect a weak cipher, but I'm unable
> to glean any specified error that would verify this suspicion. I was h
failedcert.crt <http://openssl.6102.n7.nabble.com/file/n63828/failedcert.crt>
Hello all,
I've attached a .crt certificate file that we are experiencing a problem
with. When trying to process this certificate using the PKCS7_decrypt( )
function. The error string is:
OPENSSL error:210
Hello,
After getting an error in the verify callback of my server saying that the
presented client certificate is expired, I cannot clear the openssl error stack.
The reason I want to do that is because I want to be able to override (under
specific circumstances) the default OpenSSL behavior
>
>
>
>
> --
> View this message in context:
> http://openssl.6102.n7.nabble.com/openssl-error-tp1994p47008.html
> Sent from the OpenSSL - User mailing list archive at Nabble.com.
> __
> OpenSSL Proj
I was getting the same error. Changed a setting in the openssl.cnf that
fixed it:
Locate the line:
default_md = default
Change it to:
default_md = md5
--
View this message in context:
http://openssl.6102.n7.nabble.com/openssl-error-tp1994p47008.html
Sent from the OpenSSL - User
On Oct 9, 2013, at 10:59 PM, Viktor Dukhovni wrote:
> A better solution is to not call SSL_pending() until the SSL
> handshake completes. For now you should keep track of whether
> SSL_accept() has completed for a given session, and refrain from
> SSL_pending() until then.
Agreed, but my code n
On Wed, Oct 09, 2013 at 10:46:35PM -0700, Jeremy Friesner wrote:
> > With SSL sessions created via SSLv23_method(), use of this primitive
> > will lead to the failure in question when invoked before the SSL
> > session has switched to SSLv3, TLSv1, ?
>
> Aha! Yes, that appears to be my problem.
Hi Viktor,
On Oct 9, 2013, at 9:16 PM, Viktor Dukhovni wrote:
> On Wed, Oct 09, 2013 at 07:54:34PM -0700, Jeremy Friesner wrote:
>
>> If you're interested in trying to reproduce the fault yourself,
>> let me know and I can upload the code I'm testing with.
>
> Are you using SSL_pending(), BIO_
Hi all,
I'm working on adding OpenSSL support to my server program, and generally it's
working pretty well, but I have come across a problem.
First, some background: The server is single-threaded and uses non-blocking
I/O and a select() loop to handle multiple clients simultaneously. The serv
On Wed, Oct 09, 2013 at 07:54:34PM -0700, Jeremy Friesner wrote:
> If you're interested in trying to reproduce the fault yourself,
> let me know and I can upload the code I'm testing with.
Are you using SSL_pending(), BIO_pending() or anything similar
anywhere in your code?
With SSL sessions cre
Hi Elaine,
No browser, just a client and server program I wrote myself (in C++) that I'm
trying to upgrade to support SSL. (They both previously worked over vanilla
TCP connections only, but I'm adding SSL transport as an option)
For this test, both the client and server are running on my Mac
n from the Gibson Research Corp.
Best Regards,
~elaine.
-Original Message-
From: owner-openssl-us...@openssl.org [mailto:owner-openssl-us...@openssl.org]
On Behalf Of jeremyf
Sent: Wednesday, October 09, 2013 3:24 PM
To: openssl-users@openssl.org
Subject: Strange OpenSSL error when my server
Hi all,
I'm working on adding OpenSSL support to my server program, and generally it's
working pretty well, but I have come across a problem.
First, some background: The server is single-threaded and uses non-blocking
I/O and a select() loop to handle multiple clients simultaneously. The serv
On 07-08-2013 17:57, Lutz Jaenicke wrote:
Forwarded to openssl-users for discussion.
- Forwarded message from gate Bill -
Date: Tue, 6 Aug 2013 17:22:54 +0800
From: gate Bill
To: openssl-b...@openssl.org
Subject: update openssl error
hello
my linux env:
centos 6.4 x64
Forwarded to openssl-users for discussion.
- Forwarded message from gate Bill -
Date: Tue, 6 Aug 2013 17:22:54 +0800
From: gate Bill
To: openssl-b...@openssl.org
Subject: update openssl error
hello
my linux env:
centos 6.4 x64
gcc 4.8.1
2.6.32-358.6.2.el6
Hi,
I have added AES_CCM cipher suite support to the openssl and tested with
curl client with Nginx web server .
It works well when I tested on the PC , then I cross compiled openssl and
curl for ARM and tried to run curl client application from the target , but
I get the below error .
**Peer c
> From: owner-openssl-us...@openssl.org On Behalf Of Pushkar Pathak
> Sent: Tuesday, 10 May, 2011 13:57
> I am using openssl on win xp 32. When I try to sign a request,
> openssl throws an error to the effect
> c:\>openssl ca -config openssl.cfg -policy policy_anything
>
Hi,
I am using openssl on win xp 32. When I try to sign a request, openssl
throws an error to the effect
c:\>openssl ca -config openssl.cfg -policy policy_anything -out "test.crt"
-key p -batch -infiles test.csr
Using configuration from openssl.cfg
0 entries loaded from the database
generating
Forwarded to openssl-users for discussion.
Best regards,
Lutz
- Forwarded message from Diogo Monteiro
-
From: Diogo Monteiro
To: "r...@openssl.org"
Date: Wed, 12 Jan 2011 10:21:39 -0800
Subject: OpenSSL error message
Thread-Topic: OpenSSL error message
Th
rker thread wait for the object to
> complete, extract the results.
>
> 4. Call ERR_remove_state before any function that put things on the OpenSSL
> error stack is permitted to return.
>
> 5. Hook the system's thread shutdown logic (in a platform specific way) so
> that y
essing queue,
unblock/signal an event to wake a worker thread wait for the object to
complete, extract the results.
4. Call ERR_remove_state before any function that put things on the OpenSSL
error stack is permitted to return.
5. Hook the system's thread shutdown logic (in a platform specific
Hi,
Our library uses OpenSSL(v 0.9.8k) in multithreaded environment. Recently I
observed memory leak resulting from not calling ERR_remove_state().
After reading the documentation of this function, I see that
ERR_remove_state should be called when a thread exits. Since we are using
OpenSSL within
Forwarded to openssl-users for public discussion.
Best regards,
Lutz
- Forwarded message from rejoy vm -
Date: Mon, 18 Jan 2010 19:15:28 +0530
Subject: OPENSSL error
From: rejoy vm
To: openssl-b...@openssl.org
Sir when i type make command in openssl I am getting the
fact I get that same error repeated 16 times. But, the file is sitting
there in the very place it's searching for it. The include path is correct.
Has anyone been around this block?
--
View this message in context:
http://www.nabble.com/trying-to-compile-libssh2-and-get-openssl-error-tp2219748
> From: owner-openssl-us...@openssl.org On Behalf Of tanu dutt
> Sent: Thursday, 29 January, 2009 08:31
> Can anybody tell how can I translate Openssl Error code to error
description.
> I am calling ERR_peak_last_error(). The error code that I am receiving is
b901.
> Is thi
Hi,
Can anybody tell how can I translate Openssl Error code to error description.
I am calling ERR_peak_last_error(). The error code that I am receiving is
b901.
Is this a valid error code. How can I verify it.
Thanks
Tanu
Hi,
first, until 0.6.4 devel version of wpa_supplicant, it requires a copy
of client cert sitting on hard disk. 0.6.4 has cert_id field.
at this moment i have got exactly the same error. Using wpa_supplicant
under linux client works. With openssl engine, i only need to indicate
key_id, cert_id
de. When Encrypting with the given public key, Java application
can receive the
> data perfectly. But when Java side encrypt message with private key
(which is the pair
> for our public key), and reply back, we found the following error while
trying to decrypt message:
>
> RSA.xs:2
data perfectly. But when Java side encrypt message
with private key (which is the pair for our public key), and reply back, we
found the following error while trying to decrypt message:
RSA.xs:202: OpenSSL error: block type is not 01 at ...
Please kindly suggest how we could get around this
My certificate uses a SHA256 hash and the client has OpenSSL 0.9.7.
0.9.8 is needed to support SHA256 hashes.
__
OpenSSL Project http://www.openssl.org
User Support Mailing Listop
Hi all,
I have my own CA tree, with the relevant part being:
root CA {1}
\- VPN CA {2}
\- server CA {3}
|- server certificate {4}
\- client certificate {5}
I put 1 & 2 into /etc/ssl/certs/ of the server and 3 into
/etc/openvpn/default/default-ca.pem . The server does, of cour
Arp22 wrote:
hi i am getting the following error when i run the command:
gcc -o client client.o -lcrypto -lssl
In function 'main': undefined reference to 'init_OpenSSL' undefined
reference to 'handle_error' --- what shud i do? please help!
I hope the fact that these are not Openssl function
hi i am getting the following error when i run the command:
gcc -o client client.o -lcrypto -lssl
In function 'main': undefined reference to 'init_OpenSSL' undefined
reference to 'handle_error' --- what shud i do? please help!
--
View this message in context:
hi
i am getting the following error when i run the command:
gcc -o client client.o -lcrypto -lssl
In function 'main':
undefined reference to 'init_OpenSSL'
undefined reference to 'handle_error'
--- what shud i do?
please help!
--
View this message in context:
utsourcing
Subhankar Katyayan <[EMAIL PROTECTED]>
Sent by: [EMAIL PROTECTED]
02/27/2008 07:27 PM
Please respond to
openssl-users@openssl.org
To
openssl-users@openssl.org
cc
[EMAIL PROTECTED]
Subject
OpenSSL Error
I have downloaded and installed "Win32OpenSSL-0_9_8g.exe" in "
___
Experience certainty. IT Services
Business Solutions
Outsourcing
[EMAIL PROTECTED]
Sent by: [EMAIL PROTECTED]
02/27/2008 01:38 AM
Please respond to
openssl-users@openssl.org
To
openssl-users@openssl.org
cc
es
Business Solutions
Outsourcing
Subhankar Katyayan/CHN/TCS
Sent by: Subhankar Katyayan
02/27/2008 12:15 PM
To
openssl-users@openssl.org
cc
openssl-users@openssl.org, [EMAIL PROTECTED]
Subject
Re: OpenSSL Error
Where I
ond to
openssl-users@openssl.org
To
openssl-users@openssl.org
cc
openssl-users@openssl.org, [EMAIL PROTECTED]
Subject
Re: OpenSSL Error
Hello,
> I am facing some problem when I tried to compile the application. This
application was
> building fine, but after adding a file called "d
Hello,
> I am facing some problem when I tried to compile the application. This
application was
> building fine, but after adding a file called "digestclient.c" (to
support HTTPs), it's
> throwing the following error. Can anyone give some input on this.
>
> digestclient.obj : error LNK2001: u
Dear All,
I am facing some problem when I tried to compile the application. This
application was building fine, but after adding a file called
"digestclient.c" (to support HTTPs), it's throwing the following error.
Can anyone give some input on this.
digestclient.obj : error LNK2001: unresolve
Hello, All,
is anybody experienced the following error:
error:1408F119:SSL routines:SSL3_GET_RECORD:decryption failed or bad record
mac
thank you for any help in advance.
Richard
-
Check out the hottest 2008 models today at Yahoo! Auto
Carles Fernandez i Julia wrote:
En/na Nils Larsch ha escrit:
Carles Fernandez i Julia wrote:
...
That's the point : I have the private key certificate stored in the
smartcard, not located in a plain file. That's why I commented the line
above.
the engine doesn't support using certificates stor
En/na Nils Larsch ha escrit:
> Carles Fernandez i Julia wrote:
> ...
>> That's the point : I have the private key certificate stored in the
>> smartcard, not located in a plain file. That's why I commented the line
>> above.
>
> the engine doesn't support using certificates stored on smart cards
>
Carles Fernandez i Julia wrote:
...
That's the point : I have the private key certificate stored in the
smartcard, not located in a plain file. That's why I commented the line
above.
the engine doesn't support using certificates stored on smart cards
(and I don't even think that this extremly u
En/na Marek Marcola ha escrit:
> Hello,
>
>> I'm currently trying to authenticate using EAP-TLS using smartcard with
>> wpa_supplicant and I get this error:
>>
>> OpenSSL: tls_connection_engine_private_key - Private key failed
>> verification error:140A30B1:SSL routines:SSL_check_private_key:no
Hello,
> I'm currently trying to authenticate using EAP-TLS using smartcard with
> wpa_supplicant and I get this error:
>
> OpenSSL: tls_connection_engine_private_key - Private key failed
> verification error:140A30B1:SSL routines:SSL_check_private_key:no
> certificate assigned
>
> I got some mes
Hi
I'm currently trying to authenticate using EAP-TLS using smartcard with
wpa_supplicant and I get this error:
OpenSSL: tls_connection_engine_private_key - Private key failed
verification error:140A30B1:SSL routines:SSL_check_private_key:no
certificate assigned
I got some messages "Error: can't
eros/lib -lgssapi_krb5 -lkrb5 -lcom_err -lk5crypto -lresolv
-L.. -lcrypto -L/usr/kerberos/lib -ldl -lz ; \
fi
../libssl.so: undefined reference to `SSLv2_method'
collect2: ld returned 1 exit status
make[1]: *** [openssl] Error 1
make[1]: Leaving directory
`/home/smithsg/src/rpm/BUILD/openssl-
One is a Thomson Elite Business.
-Original Message-
From: [EMAIL PROTECTED]
[mailto:[EMAIL PROTECTED] On Behalf Of Siew San Yu
Sent: Monday, October 09, 2006 3:28 AM
To: openssl-users@openssl.org
Subject: RE: Openssl Error + Apache
It means that the file that it's attempting to read
_lib.c:662:Expecting: TRUSTED
> CERTIFICATE
>
>
>
> From: [EMAIL PROTECTED] on behalf of
> Dr. Stephen Henson
> Sent: Sun 10/8/2006 12:01 PM
> To: openssl-users@openssl.org
> Subject: Re: Openssl Error + Apache
>
>
>
:Expecting: TRUSTED CERTIFICATE
From: [EMAIL PROTECTED] on behalf of Dr. Stephen Henson
Sent: Sun 10/8/2006 12:01 PM
To: openssl-users@openssl.org
Subject: Re: Openssl Error + Apache
On Sat, Oct 07, 2006, [EMAIL PROTECTED] wrote:
> Hi there ~
>
>
ct 6 13:37:21 2006] [error] mod_ssl: Init: Unable to read server
> certificate from file /apache/conf
>
> /mycertificatename.crt (OpenSSL library error follows)
>
> [Fri Oct 6 13:37:21 2006] [error] OpenSSL: error:0D0680A8:asn1 encoding
> routines:ASN1_CHECK_TLEN:wrong tag
/mycertificatename.crt (OpenSSL library error follows)
[Fri Oct 6 13:37:21 2006] [error] OpenSSL: error:0D0680A8:asn1 encoding
routines:ASN1_CHECK_TLEN:wrong tag
[Fri Oct 6 13:37:21 2006] [error] OpenSSL: error:0D07803A:asn1 encoding
routines:ASN1_ITEM_EX_D2I:nested
asn1 error
Thanks in advance
:56.499 01 ccmldap.c ccm_lookup_ldap_by_subje 0235 Found CA
cert; convert to internal format
22:57:56.499*01*ccmldap.c
*ccm_lookup_ldap_by_subje*0245*Failed to convert ASN.1 CA
cert22:57:56.499*01*ccmldap.c *ccm_lookup_ldap_by_subje*0245*OpenSSL:
error:0D09F007:asn1 encoding routines:d2i_X509
ccm_lookup_ldap_by_subje 0235 Found CA
cert; convert to internal format
22:57:56.499*01*ccmldap.c
*ccm_lookup_ldap_by_subje*0245*Failed to convert ASN.1 CA
cert22:57:56.499*01*ccmldap.c *ccm_lookup_ldap_by_subje*0245*OpenSSL:
error:0D09F007:asn1 encoding routines:d2i_X509:expecting an asn1
sequence22:57:56.499 01
owing error from OpenSSL (/var/log/xsupplicant.log):
OpenSSL Error -- error:14095044:lib(20):func(149):reason(68)
I don't know, at all, which one is faulty: if xsupplicant is causing
the error or if it is just a problem with openssl. Strangely, a
fellowship of mine is using Ubuntu with the sam
Hello,
I have an https Apache website that proxies to an IIS webserver. The site
is secure with openssl (mod_ssl) version OpenSSL 0.9.7d. I am getting the
following errors in my weblogs:
[Wed Mar 2 14:55:37 2005] [error] OpenSSL: error:0D0680A8:asn1 encoding
routine
s:ASN1_CHECK_TLEN:wrong
message --
Date: Thu, 22 Apr 2004 14:47:16 -0400 (EDT)
From: Jason A. Pfeil <[EMAIL PROTECTED]>
To: [EMAIL PROTECTED]
Subject: OpenSSL error: sslv3 alert bad record mac
Greetings, List!
I am having difficulty with pine connecting from one of my machines to
my SSL IMAP server. What h
Greetings, List!
I am having difficulty with pine connecting from one of my machines to
my SSL IMAP server. What happens is that when I start pine, it asks for
my password and I give it. It connects to the server and then tells me
that there was an error and the connection vanishes. Then I go b
At 22:44 06.12.2002 +0100, Richard Levitte - VMS Whacker wrote:
>In message <[EMAIL PROTECTED]> on Fri, 06 Dec 2002
>19:51:04 +0100, Wolfgang Ziegler <[EMAIL PROTECTED]> said:
>
>Wolfgang.Ziegler> when trying to get the subject out of a certificate
>Wolfgang.Ziegler> from our local test CA I get t
Hi,
when trying to use a certificate from our local test CA I encountered
the following error:
wolf@packcs-e0:~/.globus > /opt/globus/bin/openssl x509 -noout -in
usercert.pem -subject
unable to load certificate
26416:error:0D081072:asn1 encoding routines:d2i_ASN1_OBJECT:expecting an
object:a_ob
ivate key (OpenSSL library error follows)
>[Fri Nov 15 15:35:57 2002] [error] OpenSSL: error:24064064:random number
>generator:SSLEAY_RAND_BYTES:PRNG not seeded
>[Fri Nov 15 15:35:57 2002] [error] OpenSSL: error:04069003:rsa
>ro
I'm having a strange error with libCurl in HP-UX 11.00, using OpenSSL 0.9.6g.
I have my wrapper class in two projects. One is a standalone project and it works
fine. The other is inside a server that uses OpenSSL for the inbound client
connections, so the SSL_library_init() and such are in the
] OpenSSL: error:24064064:random number
generator:SSLEAY_RAND_BYTES:PRNG not seeded
[Fri Nov 15 15:35:57 2002] [error] OpenSSL: error:04069003:rsa
routines:RSA_generate_key:BN lib
I am using Apache 1.3.27, mod_ssl 2.8.11 on IBM AIX
-
> [error] mod_ssl: Init: Failed to generate temporary 512 bit RSA private key
> (OpenSSL library error follows)
> [error] OpenSSL: error:24064064:random number
> generator:SSLEAY_RAND_BYTES:PRNG not seeded
> [err
_ssl: Init: Failed to generate temporary 512 bit RSA private key
(OpenSSL library error follows)
[error] OpenSSL: error:24064064:random number
generator:SSLEAY_RAND_BYTES:PRNG not seeded
[error] OpenSSL: error:04069003:rsa routines:RSA_generate_
]
[mailto:owner-openssl-users@;openssl.org] On Behalf Of Manoj Kithany
Sent: Tuesday, November 12, 2002 3:19 PM
To: [EMAIL PROTECTED]; [EMAIL PROTECTED]
Subject: Apache+SSL Not working ---OpenSSL Error?
Hi Tim:
THANKS for your email.
What is TEST SERVER Program?
>
>To make sure that this
So, when I check following LOG files - I have
> following:
>
>
> Filename: error_log
>
> [Tue Nov 12 10:04:37 2002] [error] mod_ssl: Init:
> Unable to read server
> certificate from file /usr/local/ssl/bin/public.csr
> (OpenSSL library error
> follows)
> [Tue Nov 12 10:0
--
> Filename: error_log
>
> [Tue Nov 12 10:04:37 2002] [error] mod_ssl: Init:
> Unable to read server
> certificate from file /usr/local/ssl/bin/public.csr
> (OpenSSL library error
> follows)
> [Tue Nov 12 10:04:37 2002] [err
Manoj Kithany wrote:
> [12/Nov/2002 10:04:37 28132] [error] Init: Unable to read server certificate
> from file /usr/local/ssl/bin/public.csr (OpenSSL library error follows)
> [12/Nov/2002 10:04:37 28132] [error] OpenSSL: error:0D09F007:asn1 encoding
> routines:d2i_X509:expecting an a
Unable to read server
certificate from file /usr/local/ssl/bin/public.csr (OpenSSL library error
follows)
[Tue Nov 12 10:04:37 2002] [error] OpenSSL: error:0D09F007:asn1 encoding
routines:d2i_X509:expecting an asn
I have a Linux Redhat 6.2 system running apache web server. I'm trying
to update my existing ssl implementation with openssl-0.9.6g. Existing
config was compiled from source tar.
When I type in "configure" I get:
Operating system: i586-whatever-linux2
This system (linux-elf) is not supported
error follows)
[06/Mar/2002 18:45:20 25124] [error] OpenSSL: error:140890C7:SSL
routines:SSL3_GET_CLIENT_CERTIFICATE:peer did not return a certificate
[Hint: No CAs known to server for verification?]
>From the error message I can imagine two problems:
- the client has not sent any certificate
- th
On Mon, Dec 10, 2001 at 12:08:51PM -0500, Hardej, Andrew wrote:
>
> I compiled OpensSSL 0.9.6b on Solaris 2.7 successfully.
>
> When I now try to compile OpenSSH (specifically ./configure) I get the
> following error:
>
> checking for OpenSSL directory... configure: error: Could not find worki
I compiled OpensSSL 0.9.6b on Solaris 2.7 successfully.
When I now try to compile OpenSSH (specifically ./configure) I get the
following error:
checking for OpenSSL directory... configure: error: Could not find working
OpenSSL library, please install or check config.log
Are you able to tell me
Glover Barker wrote:
> I hate to distract from the original issue, but what is ethereal? Some
> kind of dump or sniffer? Where can it be found?
>
It comes up at the top of the google hit list on the name.
www.ethereal.com.
Yes, its great. 10 minute install, hit capture->start and
select an
cc:
owner-openssl-users@o Subject: Re: openssl error
pens
pr 27 18:06:19 2001] [error] OpenSSL: error:0607C084:digital
envelope routines:func(124) :reason(132)
[Fri Apr 27 18:06:19 2001] [error] OpenSSL: error:0607B086:digital
envelope routines:func(123) :reason(134)
[Fri Apr 27 18:06:19 2001] [error] OpenSSL: error:1408F071:SSL
routines:SSL3_GET_RECORD:ba
error follows)
[29/Jan/2001 10:30:46 05379] [error] OpenSSL: error:0D09F007:asn1 encoding
routines:d2i_X509:expecting an asn1 sequence
Used packages are:
Apache 1.3.12
OpenSSL 0.9.5a
mod_ssl 2.6.6.-1.3.12
Operating System is Linux RH6.1
Thank you for your help in advance
best regards,
Markus
Hello,
AM trying to test my openssl enabled apache server using the
following command;
openssl s_client -connect MYHOSTNAME:443
I get some good info followed by some that looks "not so good".
can anyone explain this error or tell me where to go
94 matches
Mail list logo