On Wed, Sep 28, 2005, Jeff Davey wrote:
> On Thu, 2005-09-29 at 01:50 +0200, Dr. Stephen Henson wrote:
> > Sorry I must have missed that. Can you send a report to RT? Do you get the
> > same problems using the verify utility? That should pretty much make the
> > same
> > calls. If you do please i
On Thu, 2005-09-29 at 01:50 +0200, Dr. Stephen Henson wrote:
> Sorry I must have missed that. Can you send a report to RT? Do you get the
> same problems using the verify utility? That should pretty much make the same
> calls. If you do please include the certificates and the command line you
> use
On Wed, Sep 28, 2005, Jeff Davey wrote:
> On Wed, 2005-09-28 at 23:22 +0200, Dr. Stephen Henson wrote:
> > What circumstances give that error: what command or application? Can you
> > include the certificate chain that does that?
> >
>
>
> I have also noticed this problem with 0.9.8, and repor
On Wed, 2005-09-28 at 23:22 +0200, Dr. Stephen Henson wrote:
> What circumstances give that error: what command or application? Can you
> include the certificate chain that does that?
>
I have also noticed this problem with 0.9.8, and reported it here on
this list August 8th (with no response).
On Wed, Sep 28, 2005, Calista wrote:
> Hi,
>
> I upgraded to the latest OpenSSL and quite to my
> consternation the X509_verify_cert fails with the
> reason "self signed certificate". But if I switch back
> to 0.9.7c it doesn't.
>
> Did I miss anything during the upgrade?
>
What circumstances
Hi,
I upgraded to the latest OpenSSL and quite to my
consternation the X509_verify_cert fails with the
reason "self signed certificate". But if I switch back
to 0.9.7c it doesn't.
Did I miss anything during the upgrade?
Thank you.
Calista.
__
Y
Kent Yoder wrote:
One concern here... The solution as it is in the latest snapshot will
require apps to always call ENGINE_load_builtin_engines() before a
ENGINE_load_dynamic() should be sufficient
call to ENGINE_by_id(ID), even if ID is a shared object engine. Is
this the desired behavior?
Also see src/doc/HOWTO/certificates.txt and keys.txt, as well as
src/doc/openssl.txt. These might provide guidance for the ideas behind the
code that Frédéric pointed to.
-Original Message-
From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] On Behalf Of Frédéric Donnat
Sent: Wednesday, S
Hi Stephen,
Thank you so much for your help. Using EVP_des_ede3_cbc() worked.
I did not know what kind cipher should be used. This will let me move
forward. Thanks again,
Zhenqiang Fan
-Original Message-
From: Dr. Stephen Henson [mailto:[EMAIL PROTECTED]
Sent: Tuesday, September 27, 2005
Hi, all. I've been trying to get dynamic engine support working on OS X for
about a week now, and no luck. My goal is to use the opensc pkcs11 engine with
openssl, so I can use an aladdin etoken. I've got OpenSSL 0.9.8 05 Jul 2005,
according to openssl version. I configure openssl like this whe
One concern here... The solution as it is in the latest snapshot will
require apps to always call ENGINE_load_builtin_engines() before a
call to ENGINE_by_id(ID), even if ID is a shared object engine. Is
this the desired behavior? It may not be obvious to app writers that
the builtin dynamic eng
Hi,
You could also have a look at:
- demos/selfsign.c
Or the OpenSSL tools:
- apps/req.c
- apps/ca.c
- apps/x509.c
Fred
-Original Message-
From: Dr. Stephen Henson [mailto:[EMAIL PROTECTED]
Sent: Wed 9/28/2005 3:12 PM
To: openssl-users@openssl.org
Cc:
Subject:Re:
On Wed, Sep 28, 2005, Felix Dorner wrote:
>
> hi,
>
> i would like to write some code (using the openssl/crypto libs) that
>
> - creates a keypair
> - creates a self signed X509 certificate for/with that keypair and uses
> predefined strings for the certificate attributes, means there will be
hi,
i would like to write some code (using the openssl/crypto libs) that
- creates a keypair
- creates a self signed X509 certificate for/with that keypair and uses
predefined strings for the certificate attributes, means there will be no user
interaction.
i think i can manage to create the k
Hi.,
Have a small doubt on how the application needs to "react" for an
SSL_ERROR_SYSCALL. What do I have to do when I actually attempted
an SSL_READ and endedup with that error code, now should the operation
need to be retried based on "errno" or should this be regarded
as a "fatal"?
If it needs
Greetings!
I use IE 6.0 from Windows XP and Mozilla 1.7 from linux. I use openssl
0.9.8.
When I start
openssl s_server -key keydsa2.pem -cert certdsa2.pem -www -cipher
EDH-DSS-DES-CBC3-SHA
Mozilla successfully shows debug page, but IE doesn't. The key and cert
I use are attached.
When I use Op
16 matches
Mail list logo
