Hi,
Is it possible to use AES en-decryption using asymmetric keys(private and
public keys)
Thanks,
-Dorai
DISCLAIMER
This message and any attachment(s) contained here are information that is
confidential, proprietary to HCL Technologies
and its customers. Contents may be privileged or otherw
Hi all,
I am having a weird problem in my site related to SSL.
I can connect from inside the network to the secure pages , so the
certificate is fine. From outside the connections are refused. I have a
monitoring company checking the site and from them I got the following
error message
TCP er
Hey
all,
I am writing my
own security sw module for a device. My predecessor left this project
unfinished and I am filling his shoes. Naturally they want this done tomorrow. I
immediately noticed this device has OpenSSL built into it,
so leveraging off of that for my certification seems v
Mark wrote:
Hi,
The following command seems to create a new public and private key:
# openssl req -newkey rsa:1024 -keyout nuckey.pem -keyform PEM -out
nucreq.pem -nodes -outform PEM
What are these key files for?
I'm still not sure what these files are for. I guess that the
nuckey.pem
is
The problem is, this happened on a machine not my own, and I cannot
reproduce this. All I have to go by is the log, and unforutnately, I
didn't log the actual return value from SSL_accept(). All I know is
that it returned <= 0. And that the error code returned by
ERR_get_error() was 0. So I'm t
Hi,
> It is still better to have a CA that signs certificates,
> there are some
> technical reasons in openssl,
> it is simpler to program the trust checking, in fact with self signed
> certs you need callbacks
> to accept them, while with a "trusted" CA, you don't.
This has put "a spanner in
Hi,
Thanks for all the help everyone.
> We're signing the certificates for users. They call up the servers and
> present a certificate which authorises them. The root certificate is
> stored on the servers, and the fingerprint of it is stored in custom
> silicon (so no-one can change the entire h
Hi,
You could have a look at apps/s_client.c code looking for nbio option.
It seems that there is two way of doing such thing:
- craete nbio BIO and then connect, etc..
- connect (a socket for example) and then set non blocking IO
(with the socket utilities)
hope it could help
Fred
---
can some one please point me to an example of non-blocking IO reading
with openssl.
Thanks,
Perry
__
OpenSSL Project http://www.openssl.org
User Support Mailing Listopenssl-use
try this to find the error:
i=SSL_accept(con);
switch (SSL_get_error(con,i))
{
case SSL_ERROR_NONE:
break;
case SSL_ERROR_WANT_WRITE:
Hello,
I am trying to patch the PKCS#7 code to (partially) handle CMS ver 3.
What I need is to parse a CMS structure that has an attribute
certificate in the certificates field of SignedData.
The relevant defintions from RFC 2630 are:
SignedData ::= SEQUENCE {
version CMSVersion,
On Tue, Nov 22, 2005 at 09:14:58AM -, Mark wrote:
> I'm still not sure what these files are for. I guess that the
> nuckey.pem
> is a private key (does this need loading with
> SSL_CTX_use_certificate_chain_file?).
> I guess the nucreq.pem is the public key which requires signing. Do I
> ne
Hi,
> Now a self signed certificate is something like someone saying "I am
> your Trusted Partner. You can trust me because I have a
> passport which I
> issued myself". You can believe in this if for example you
> can check the
> key's fingerprints with your partner over telephone. But if
13 matches
Mail list logo
