On Fri, Sep 21, 2001 at 08:51:43AM +0600, Ashada Karunaratna wrote:
> I tried to use SSL_dup() functions to duplicate my SSL object and use that
> SSL object to communication. But it fails. However I could communicate with
> original SSL object well. Is anyone know reson for that.
That is har
On Fri, Sep 21, 2001 at 10:50:55AM -0400, Andrew Finnell wrote:
> I have come across a little delima.. I set a password callback on a
> SSL_CTX, and when I went to write the implementatino I realized I couldn't
> determine what SSL * connection was currently in use.. And every SSL
> connecti
Ok, I found the solution, and thought someone else might benefit from
my efforts.
What I am trying to do is create a heirarchy of intermediate CAs with
a single root CA at the top. I wish to be able to sign server certs,
primarily, and they must be able to create a trusted site that loads
withou
[EMAIL PROTECTED] wrote:
>
> Hello
> Using Apache/modssl/openssl SSL worked fine with apache
> snake-oil certs, but when adding verisign cert I get the following
> error and no startup
> OpenSSL: error:0D09F007:ans1 encoding routines :d2i_x509: expecting an
>
[EMAIL PROTECTED] wrote:
>
> Hello
> Using Apache/modssl/openssl SSL worked fine with apache
> snake-oil certs, but when adding verisign cert I get the following
> error and no startup
> OpenSSL: error:0D09F007:ans1 encoding routines :d2i_x509: expecting an
>
Hello
Using Apache/modssl/openssl SSL worked fine with apache
snake-oil certs, but when adding verisign cert I get the following
error and no startup
OpenSSL: error:0D09F007:ans1 encoding routines :d2i_x509: expecting an
ans1 sequence.
Does a
I have an encrypted/password-protected private key file in PEM format
generated by Phaos' SSLava.
My OpenSSL app can't read it - it crashes on Windows with an Access
Violation during SSL_CTX_use_PrivateKey_file(...).
Here is a stack:
EVP_PKCS82PKEY + 28 bytes
PEM_ASN1_read_bio
Title: Determing SSL conection to use in password_Callback
I have come across a little delima.. I set a password callback on a SSL_CTX, and when I went to write the implementatino I realized I couldn't determine what SSL * connection was currently in use.. And every SSL connection I h
On 09/21/01 12:53 PM, Dr S N Henson sat at the `puter and typed:
> Louis LeBlanc wrote:
> >
> >
> > I am including the x509 output of my intermediate below. I notice
> > that the CA constraint is false. Does this have anything to do with
> > the problem? I am guessing it does, but how do I fi
On Fri, Sep 21, 2001 at 04:59:17PM +0300, Marko Asplund wrote:
> has anyone done an analysis of the OpenSSL PRNG which would be available
> for public? i've read the Random Number Generation chapter of Peter
> Gutmann's PhD thesis (The Design and Verification of a Cryptographic
> Security Archite
Hi,
I notice that when SSL_CTX_new() is called, the following call sequence
happens :
SSL_CTX_new -> SSL_get_ex_data_X509_STORE_CTX_idx ->
X509_STORE_CTX_get_ex_new_index -> CRYPTO_get_ex_new_index
And the memory (56 bytes) that is allocated by CRYPTO_get_ex_new_index()
doesnt get freed when I
has anyone done an analysis of the OpenSSL PRNG which would be available
for public? i've read the Random Number Generation chapter of Peter
Gutmann's PhD thesis (The Design and Verification of a Cryptographic
Security Architecture, http://www.cryptoapps.com/~peter/06_random.pdf)
which contains a
Hi,
Can the web client
certificates generate for an Apache Server be used against an IIS Server if we
transfor the certificate format from Apache to IIS?
Many
Thanks.
Nuria
_
Uni2 - Lince Telecomunicaciones, S.A.U.
Aviso leg
Louis LeBlanc wrote:
>
>
> I am including the x509 output of my intermediate below. I notice
> that the CA constraint is false. Does this have anything to do with
> the problem? I am guessing it does, but how do I fix this? I have
> been all over the online docs, so I am fairly certain that
sk wrote:
>
> hi
>
> I want to set certificate request version 3.
> I wrote code as below
> CA sign cert req but, certificate version number is 1.
>
The request version is not copied to the certificate version. The signed
certificate version of the 'openssl ca' and 'x509' utilities is normally
On Fri, Sep 21, 2001 at 10:09:37AM +0100, Andy Schneider wrote:
> This patch works. However it is also worth noting that my tests expose a
> minor caveat. If a client and server request handshakes thus:
>
> Server:
> Read
> Renegotiate
> Read
> Write
>
> Client:
>
This patch works. However it is also worth noting that my tests expose a
minor caveat. If a client and server request handshakes thus:
Server:
Read
Renegotiate
Read
Write
Client:
Write
Renegotiate
Read
Write
The client will hang st
__
OpenSSL Project http://www.openssl.org
User Support Mailing List[EMAIL PROTECTED]
Automated List Manager [EMAIL PROTECTED]
18 matches
Mail list logo
