No, that did not work.
See the first mail for the error.
--esskar
> -Original Message-
> From: [EMAIL PROTECTED]
> [mailto:[EMAIL PROTECTED] On Behalf Of Dr.
> Stephen Henson
> Sent: Donnerstag, 9. Februar 2006 01:14
> To: openssl-users@openssl.org
> Subject: Re: OpenSSL for Mingw
>
>
Hello All,
This is my first message, so I hope all goes well.
As a contractor, I'm working for a company that uses openssl quite
extensively. They port it over to many different platforms.
I have been given the task to update their current version (0.9.7d +
OS400 mods) to 0.9.7i. We have gott
> Because the software has to build on so many platforms, config,
> Configure, do_nasm, do_masm, and so on have to copy files into the
> build directory as appropriate, and modify the makefile as
> appropriate.
No, that's just the way it's done. There is actually no requirement that
a build/port
Because the software has to build on so many platforms, config,
Configure, do_nasm, do_masm, and so on have to copy files into the
build directory as appropriate, and modify the makefile as
appropriate.
As long as only one setup is being used for all of the builds, it
should only have to be done o
On Thu, Feb 09, 2006, Kiefer, Sascha wrote:
> Ah, okay. I have to call that .bat file on the cmd, not in the mingw-shell
>
>From the msys shell you should be able to just do:
./config
make
Steve.
--
Dr Stephen N. Henson. Email, S/MIME and PGP keys: see homepage
OpenSSL project core developer a
Ah, okay. I have to call that .bat file on the cmd, not in the mingw-shell
--sak
> -Original Message-
> From: [EMAIL PROTECTED]
> [mailto:[EMAIL PROTECTED] On Behalf Of Kiefer, Sascha
> Sent: Mittwoch, 8. Februar 2006 23:58
> To: openssl-users@openssl.org
> Subject: OpenSSL for Mingw
>
Hi.
Is it possible to compile OpenSSL for mingw?
I tried it, but get an error:
In file included from cversion.c:62:
buildinf.h:6:4: #error "Windows builds (PLATFORM=mingw) use mk1mf.pl-created
Makefiles"
make[1]: *** [cversion.o] Error 1
make[1]: Leaving directory `/d/Eigene
Dateien/Downloads/open
Hi!
I've been working on an application using OpenSSL. For a couple of weeks, I
used the prebuilt Win32 version of the library. But recently I made the switch
to the full blown source distribution.
The build process by itself works perfectly, but, at work, we're using Perforce
as our version mana
I am trying to cross-compile openSSL for the Intel Sitsang Development Board. I
have my toolchain up and running. I compile with the "arm-linux-gcc" command.
I have been trying to add my own entry to the Configure file so that the build
will succeed.
My attempts include:
A simple change of the
On Wed, Feb 08, 2006 at 12:53:26PM -0700, Kyle Hamilton wrote:
> Check the documentation for the various levels to see what each cipher
> falls into. Specifically, "LOW" is any 40 or 56-bit cipher, and 768
> bytes or below RSA key. MEDIUM is any 128 bit cipher (except AES) and
> 1024 bits or mor
Check the documentation for the various levels to see what each cipher
falls into. Specifically, "LOW" is any 40 or 56-bit cipher, and 768
bytes or below RSA key. MEDIUM is any 128 bit cipher (except AES) and
1024 bits or more of RSA key. HIGH is any 256-bit cipher, any AES
cipher, and 2048+ bit
On Tue, Feb 07, 2006 at 11:32:43PM -0700, Kyle Hamilton wrote:
> On 2/7/06, Victor Duchovni <[EMAIL PROTECTED]> wrote:
> >
> > For Postfix 2.3 I would like to be able to determine whether the actual
> > cipher negotiated for a session initialized with a lenient allowed cipher
> > list, is actually
There is a utility called "certpatch" developed by
OpenBSD folks for including the SubjAltName extension.
I have modified it a little bit to suit my need.
This utility modifies the certificate in place and
regenerates the hash. Perhaps you can modify it a
little to suit your need.
If all you nee
If you're on Win32, just type up the query, copy it, then in the
console window's system menu (alt+spacebar), select 'Edit', and then
'Paste'.
The two programs run in different processes, and don't particularly
care about sessions. (They're not bound to Windows conventions like
Windows-specific s
Dr. Henson:
May I direct your attention to the thread entitled "RE: [openssl.org
#1204]: bad record mac because of wrong SSL_OP_TLS_BLOCK_PADDING_BUG
handling" on the openssl-dev list? It appears to be because of a zlib
size calculation change.
However, the specifics are slightly different betwe
Yes, it work's. Thank you very much!
Richard Salz schrieb:
>>sockaddr* peername = NULL;
>>int namelen;
>>
>>getpeername(buffer, peername, &namelen);
>>
>>
>
>Just like namelen, you have to allocate space:
>
>sockaddr peername
>namelen = sizeof peername;
> sockaddr* peername = NULL;
> int namelen;
>
> getpeername(buffer, peername, &namelen);
Just like namelen, you have to allocate space:
sockaddr peername
namelen = sizeof peername;;
getpeername(buffer, &perrname, &namelen);
--
SOA Appliance Group
On Wed, Feb 08, 2006, Michael Smith wrote:
>
> A follow-up to my own post from last week. I've done some more digging -
> hopefully this is enough for someone to offer some suggestions.
>
> I have been trying different versions of openssl with apache on solaris and
> sun cc. With versions >= 0
OK I figured out what I did wrong and now
it works OK:
To fix…
…
-I downloaded http://www.essemer.com.au/windowsce/wcecompat-1.2.zip
-I cd to C:\wcecompat and run nmake
I set WCECOMPAT=C:\wcecompat
…
Many thanks to the people at Pervasive
Computing (http://karajan.it.uc3m.es/
OK I figured out what I did wrong and now
it works OK:
To fix…
…
-I downloaded http://www.essemer.com.au/windowsce/wcecompat-1.2.zip
-I cd to C:\wcecompat and run nmake
I set WCECOMPAT=C:\wcecompat
…
Many thanks to the people at Pervasive
Computing (http://karajan.it.uc3m.es/
I tried to compile OpenSSL 0.9.8a for Windows CE but I get
errors saying many include files are missing.
Can someone say if the below steps are correct or help solve
errors – thank you!:
I used Pervasive Computing’s OpenSSL files
-downloaded src from http://www.it.uc3m.es/pervasive
Fantastic response, just what I needed, thanks Kyle.
Now, I have done as you suggested:
The s_server tests showed a perfect XML message in the s_server window,
so that seems fine.
The s_client test I assumed I had to run in a separate session whiles
the s_server command was still running - outpu
Thanks Kyle,Sorry if I'm being daft here - I have tried to read some of the docs and done a google search - but how do I turn off backward-compatability?Michael
On 2/8/06, Kyle Hamilton <[EMAIL PROTECTED]> wrote:
This sounds suspiciously like a bug due to turning on compatibilitywith broken SSL imp
This sounds suspiciously like a bug due to turning on compatibility
with broken SSL implementations that was found and quashed about a
week ago. If you turn off backward-compatibility (including MSIE
broken SSL implementation), does the problem persist?
-Kyle H
On 2/8/06, Michael Smith <[EMAIL P
Hi there,
A follow-up to my own post from last week. I've done some more digging - hopefully this is enough for someone to offer some suggestions.
I have been trying different versions of openssl with apache on solaris and sun cc. With versions >= 0.9.7 (see below exact list of releases teste
...this is making no sense to me, does anyone else have a clue?
(Forwarding due to problems with the original poster's mailer.)
-Kyle H
-- Forwarded message --
From: Petr Silhavy <[EMAIL PROTECTED]>
Date: Feb 7, 2006 8:38 AM
Subject: Re: Can't sign request: entry 8: invalid expir
Kyle Hamilton <[EMAIL PROTECTED]> writes:
> What's the validity period for your CA certificate?
>
openssl x509 -in CA/cacert.pem -dates
notBefore=Oct 1 14:24:42 2003 GMT
notAfter=Aug 8 14:24:42 2036 GMT
...
> and did you really mean '1902'?
yes
>
> -Kyle H
>
> On 2/3/06, Petr Silhavy <[EMAIL PR
In order for a certificate to have any meaning, it must include a
public key (of whatever type), and the private key should be kept
private for that side.
Thus, you've created three keypairs: one for the CA, one for the
server, one for the client.
The CA's certificate is self-signed, and you've g
Hi,
I build a server an I want to get the IP-adress of a client that connect
to the server. I tried this:
client = BIO_pop(acc);
SOCKET buffer;
BIO_get_fd(client, &buffer);
sockaddr* peername = NULL;
int namelen;
getpeername(buffer, pee
Hi, thanks for the response,
Sorry to post something this convoluted to the group, but I need help
and Kyle asked for more info - he may now regret that! Here is a bit
more detail:
I currently have a GUI executable which calls functions and operations
on a DLL. What the DLL actually does is imm
...you can't, without re-signing the certificate. (changing the
certificate data invalidates the signed hash.)
However, if you want to, you can use openssl x509 -x509toreq -in
currentcert.pem -out currentcert.req .
Then, create a new configuration template file with the information
you want to r
I'm not entirely certain what you're looking at.
The server that hosts the SOAP service must be accessed using TLS or
SSL; this means that the certificate and key need to be available to
the server hosting the service, not (necessarily) the client. (XML
encryption isn't done yet, according to the
sslv3 alert certificate unknown means that the server needs to trust
the CA for issuing client certificates. (The server is authenticating
fine, but it's likely that the server isn't sending information on
what CA it will accept a client certificate from, so the other side
sends an alert. Either
Hi,
I have created a CA certificate and used it to sign a
server and client certificate for my client / server apps. All the
certificate validation seems fine, and the data I send out (it’s a SOAP
message) appears to have been encrypted properly, but it’s not being
decrypted at the oth
Chong,
With response to your e-mail, I used ERR_error_string and this is the
output:
Error: [error:14094416:SSL routines:SSL3_READ_BYTES:sslv3 alert certificate
unknown]
This is how I used it -- the error was in SSL_connect.
err = SSL_connect (ssl);
if (err <=0)
{
unsigned long E
How can I rewrite some field in X509 extension and than
save whole certificate with this change to file?
__
OpenSSL Project http://www.openssl.org
User Support Mailing Listopenssl
Thanks Kyle, much appreciated!
--
View this message in context:
http://www.nabble.com/OpenSSL-binaries-on-the-%28shared%29-server-t1079747.html#a2818694
Sent from the OpenSSL - User forum at Nabble.com.
__
OpenSSL Project
37 matches
Mail list logo
