Re: installation openssl urgent!

2002-10-23 Thread Adriano Devillaine
Hi Jose... First of all..don't unistall the openssl rpm's that comes with the redhat distriution, because many packages uses libraries and headers that are not suplied eith anothers distribiutons... Second... when you run the configure script, make shore you run it with the "shared" parameter lik

Re: installation openssl urgent!

2002-10-23 Thread José Alberto Patiño Limón
On Tue, 2002-10-22 at 19:32, Ivone Uribe wrote: > Hi all! > > I have problems with the openssl in an installation of a wap gateway, I'm > using the RedHat 7.2. > > When I was trying to install the gateway rpm I got this messages: > libcrypto.so.0.9.6 required > libssl.so.0.9.6 required. > > >

non-blocking SSL operations?

2002-10-23 Thread Rodney Thayer
are there examples anywhere of non-blocking reads, writes, and accept processing? I see that SSL_read discusses the use of underlying nonblocking BIO's but are there examples? __ OpenSSL Project ht

Re: PKCS12_parse problem

2002-10-23 Thread Dr. Stephen Henson
On Wed, Oct 23, 2002, Marco Donati wrote: > Adding OpenSSL_add_all_ciphers() or OpenSSL_add_all_digests() doesn't help. > > If we comment out the OpenSSL_add_all_algorithms() call, we get the ''correct'' >error: > > << > 5257:error:2306B076:PKCS12 routines:PKCS12_gen_mac:unknown digest >algori

OpenSSL vs BSAFE: RAS and MD5 Hash - resolved

2002-10-23 Thread Lisa Marie Maxson
Thanks for the suggestions. The problem ended up being that we did not understand that you needed to MD5 hash the clear text before you use the RSA_sign call. We assumed since you told the function you were using MD5 hashing that it would hash the data instead of just putting a header on it and p

PKCS12_parse problem

2002-10-23 Thread Marco Donati
Adding OpenSSL_add_all_ciphers() or OpenSSL_add_all_digests() doesn't help. If we comment out the OpenSSL_add_all_algorithms() call, we get the ''correct'' error: << 5257:error:2306B076:PKCS12 routines:PKCS12_gen_mac:unknown digest algorithm:p12_mutl.c:80: 5257:error:2307E06D:PKCS12 routines:VER

Re: client-side session reuse

2002-10-23 Thread Jonathan Hersch
--- Xperex Tim <[EMAIL PROTECTED]> wrote: > I don't understand how your solution completely fixes things though. What if > the server is > restarted with caching disabled while the client still has sessions cached. > When the sessions > were cached by the client the session ID was not zero lengt

Re: anybody using EGADS?

2002-10-23 Thread Marcus Carey
Ed I am not sure about its entropy but you can use the egads_randstring() function to generate data which is faster than calling egads_entropy() directly. I have used it with nBytes = 1024 and it only takes a few seconds. Marcus - Original Message - From: "Edward Chan" <[EMAIL PROT

Re: .9.6g engine

2002-10-23 Thread Richard Levitte - VMS Whacker
In message <[EMAIL PROTECTED]> on Wed, 23 Oct 2002 05:42:47 -0700 (PDT), "Brad Blankenship" <[EMAIL PROTECTED]> said: bblanken> 1900:error:25078066:DSO support routines:WIN32_LOAD:Could not load the bblanken> shared library:./crypto/dso/dso_win32.c:137: bblanken> 1900:error:25078066:DSO support r

.9.6g engine

2002-10-23 Thread Brad Blankenship
I compiled OpenSSL .9.0g engine on Windows 2000. It compiled without any problems. I am running a broadcom ssl accelerator card. When I run openssl speed des -engine ubsec, I get the following errors: 1900:error:25078066:DSO support routines:WIN32_LOAD:Could not load the shared library:./crypto

Re: CMP support

2002-10-23 Thread Andrew Abramov
Andrew.Abramov>> And another question about additional stuff. Does the Andrew.Abramov>> openssl support CMP? Can it generate and parse this Andrew.Abramov>> kind of messages? RLVW> No. And does anybody know, what software (especially CA) can parse CMP messages? -- Andrew Abramov Astrosoft Develo

Re: OpenSSL and iPlanet problems - again

2002-10-23 Thread Vadim Fedukovich
On Wed, Oct 23, 2002 at 11:43:54AM -0400, Ashwin C Uthappa wrote: > Hi all, > Just some updates > > I used the openssl tool to try and establish communication with both the > engine (which fails) and the "proxy engine" (which succeeds). I've > pasted the output below. > > Some details: the

Re: OpenSSL and iPlanet problems . Sorry, earlier mail had wrongdata

2002-10-23 Thread Richard Levitte - VMS Whacker
In message <[EMAIL PROTECTED]> on Wed, 23 Oct 2002 13:10:04 -0400, Ashwin C Uthappa <[EMAIL PROTECTED]> said: ashwin.uthappa> OpenSSL> s_client -connect 10.10.10.114:10001 -debug -state -ssl3 ashwin.uthappa> CONNECTED(0004) ashwin.uthappa> SSL_connect:before/connect initialization ashwin.utha

Re: OpenSSL and iPlanet problems - again

2002-10-23 Thread Richard Levitte - VMS Whacker
In message <[EMAIL PROTECTED]> on Wed, 23 Oct 2002 11:43:54 -0400, Ashwin C Uthappa <[EMAIL PROTECTED]> said: ashwin.uthappa> WITH ENGINE : ashwin.uthappa> -- ashwin.uthappa> OpenSSL> s_client -connect 10.10.10.114:8080 -debug -state -ssl3 ashwin.uthappa> CONNECTED(0003) a

Re: OpenSSL and iPlanet problems . Sorry, earlier mail had wrongdata

2002-10-23 Thread Ashwin C Uthappa
Hi, In my earlier mail, I'd mistakenly connected to the http port and was getting a handshake failure (naturally!!). I am now connecting to the engine on the actual port which has been reserved for the SSL communication. The result : OpenSSL> s_client -connect 10.10.10.114:10001 -debug -state