BIO_read is continuously returning "-1"

I am quite new for the OpenSSL programming. I am using Perl client program and C client program for connecting to the same server. Perl script works fine with the get_https request. But in C, I am getting "-1" return value from the server while reading. C program implimentation is same as of sslc

Re: Newbie question X509 certificate stores

On Tue, Dec 27, 2005, Chris Morrison wrote: > > > I've finally found time to get back to this project. Thanks for the pointers > Steve. > > However, I've tried using the above call d2i_PKCS7(), but it fails to open > the store with the errors below. > > 4777:error:0D0680A8:asn1 encoding routin

problems generating certificates

hi everybody, well finally get install openssl v0.9.8a, now when i try to generate certificates to be used with freeradius (eap-tls or eap-peap) i use these commands to CERTIFICATE AUTHORITY GENERATION: #openssl req -new -x509 -keyout newreq.pem -out newreq.pem -passin pass:clue1 -passout pass

0.9.8a: s_client <-> s_server session renegotiation vs. zlib

Is this the same as the Debian bug reports? ./apps/openssl s_server -key key.pem -cert cert.pem -bugs -accept 12345 ./apps/openssl s_client -bugs -connect localhost:12345 Default compile linux-elf (no zlib) looks good: New, TLSv1/SSLv3, Cipher is DHE-RSA-AES256-SHA Server public key is

RE: Newbie question X509 certificate stores

> -Original Message- > From: [EMAIL PROTECTED] [mailto:owner-openssl- > [EMAIL PROTECTED] On Behalf Of Dr. Stephen Henson > Sent: 13 August 2005 17:44 > To: openssl-users@openssl.org > Subject: Re: Newbie question X509 certificate stores > > On Sat, Aug 13, 2005, Chris Morrison wrote: >

Re: DTLS and SSL_VERIFY_PEER

Hi, anytime I use the SSL_VERIFY_PEER flag for my DTLS connections (clientside, serverside, or on both sides) I get this error message: d1_both.c(1046): OpenSSL internal errror, assertion failed: s->d1->w_msg_hdr.msg_len + DTLS1_HM_HEADER_LENGTH == (unsigned int)s->init_num I just saw that

Re: d2i/i2d for SEQUENCE OF Certificate

On Tue, Dec 27, 2005, Vadim Godunko wrote: > Hello, > > How I may encode/decode of > > SEQUENCE SIZE (1 .. MAX) OF Ceritificate > > from/to STACK_OF(X509)? If you just want to encode that one structure (as opposed to embedding it in another) then check out and adapt the definition of GENERAL_N

DTLS and SSL_VERIFY_PEER

Hi, anytime I use the SSL_VERIFY_PEER flag for my DTLS connections (clientside, serverside, or on both sides) I get this error message: d1_both.c(1046): OpenSSL internal errror, assertion failed: s->d1->w_msg_hdr.msg_len + DTLS1_HM_HEADER_LENGTH == (unsigned int)s->init_num Doesn't DTLS su

X509 certificate verification ?

Hi All,   I am using rsj_verify_x509cert() for X509 certificate verification against a CA. This function is derived from eay_verify_x509cert() from ipsec-tools.5.2 rsj_verify_x509cert() takes memory pointer for cert and CA cert instead of directory in eay_check_x509cert(). But i am experiencing a m

d2i/i2d for SEQUENCE OF Certificate

Hello, How I may encode/decode of SEQUENCE SIZE (1 .. MAX) OF Ceritificate from/to STACK_OF(X509)? http://www.e-mail.ru ÔÅÄÅÐÀËÜÍÀß ÏÎ×ÒÎÂÀß ÑËÓÆÁÀ E-MAIL.RU http://www.e-mail.ru Òîëüêî äî 31 äåêàáðÿ êîìïàíèÿ "Êëþ÷ ÏëàñòÊîíñòðóêòîð" ïðåäëàãàåò ñêèäêè äî 32% íà ïëàñòèêîâûå îêíà è äâåðè! Çâîíèòå