AFAIK, tcp read can return Zero, as numbytes read, and does not
mean
than the fd is invalidated. I think you should use SSL_received_shutdown
or something
which checks if any close has been initiated by the
server..
Attempting write when a close was received will result in
sigpipe..
---
The accept could have failed for any reason such as
mismatch of ssl versions/ no matching ciphers/ untrusted certificate /
so check on the wire whats going on. From your code snipped,
am not sure what exactly setup_client_ctx() does or what ciphers
have been set on the server ctx..the SSL_METHOD u
Dear OpenSSL working group ,
My name is Aidros doing Master study in SSL
Development.
I'm glad to participate and share knowledge with you. This is the firs
participation.
My project is to Improve Bulk data transfer phase performance (Record Layer)
using Parallelism (reducing the processing time)
Hi,
We're porting our product to 0.9.7i. Our last version worked fine with
0.9.7d and the new one is OK using 0.9.7i on most other platforms but
not on AIX 5.1 or 5.3. On all platforms SSL_accept returns -1. On
everything other than AIX SSL_get_error returns SSL_ERROR_WANT_READ.
Adding debug
If the server returns an error my client does not shut down the connection. I think i have to use SSL_Read and then if the return value is less than or equal to 0 then i just break. The problem is that when i use SSL_Read then my SSL_write does not seem to work...why is that.or is there
Hi,
My application is very simple, a client that connects to a server and
they verify each other's identity. Right now I'm just trying to get them
to connect. I'm using OpenSSL 0.9.7. I started with the example
application in the O'Reilly "Network Security with OpenSSL" book. I was
able to integra
On Wed, Apr 05, 2006, Nagy Zoltn Mrk wrote:
> Hi!
>
> Is possible? Anybody give me an example code? i cant find doc and
> example on internet.
>
> {
> generate key pairs;// first 512bits
> get string from keyboard; //keyboard or from others, but more than 1024chars
> crypt string with public key
Hi!
Is possible? Anybody give me an example code? i cant find doc and
example on internet.
{
generate key pairs;// first 512bits
get string from keyboard; //keyboard or from others, but more than 1024chars
crypt string with public key;
}
i crypt only 53chars with 512bits keys with
RSA_generate_k
Hello,
> Hi!
>
> I tired to use RSA encryption.
>
>
> unsigned char *rsa_in = "Very secret message Very secret message Very secret
> m";
>
> OpenSSL_add_all_algorithms();
> pad = RSA_PKCS1_PADDING;
> rsa_inlen = strlen(rsa_in);
> printf ("rsa_inlen:%d\n",rsa_inlen);
>
> rsa = RSA_generate_key
Hi!
I tired to use RSA encryption.
unsigned char *rsa_in = "Very secret message Very secret message Very secret m";
OpenSSL_add_all_algorithms();
pad = RSA_PKCS1_PADDING;
rsa_inlen = strlen(rsa_in);
printf ("rsa_inlen:%d\n",rsa_inlen);
rsa = RSA_generate_key(512,RSA_F4,NULL,NULL);
keysize = RS
I'm running this under the Visual Studio 2005 x64
Command Prompt (so that all the environment variables are
set.)
See if following error makes sense to you. ( I did unzip the tar using WinAce Archiver
)
I'm not sure why its
using the "out32dll" & "tmp32" etc. 32 bit target/references for
On Wed, Apr 05, 2006, Holger Menzer wrote:
> Hello,
>
> is it possible to implement indirect Certificate Revocation Lists with
> OpenSSL?
> There is an entry in the man page to x509v3_config [1], saying it cannot
> currently be set or displayed... But maybe someone hacked it anyway
> (- by usin
I have built
OpenSSL for 64-bit Windows on an Itanium platform.
Beware that if
you use WinZip to untar the files, by default WinZip converts \n to \r\n in the
makefiles and this breaks the Perl scripts.
I built the code
on a 32-bit Windows box using the Set Win Svr 2003 IA64 Build E
I'm
new to this group & want to use the openssl library on Win x64 platform. I
want to build on Visual Studio 2005 or 2003. I've tried to build the 0.9.8a
release & latest snapshots without success. I've followed instruction in the
INSTALL.W64 file, but it does not successfully compile &
li
Hello,
is it possible to implement indirect Certificate Revocation Lists with
OpenSSL?
There is an entry in the man page to x509v3_config [1], saying it cannot
currently be set or displayed... But maybe someone hacked it anyway
(- by using ASN.1 or DER for example).
If it's possible, how can
On Wed, Apr 05, 2006, Francisco Javier Martinez Martinez wrote:
> Hello world.
>
> I am getting crazy I can't find the solution.
>
> Could anyone be so kind of show me clues, examples, config files in order
> to make an intermediate CA?
>
> My scenario:
>
> I issue certificates with openssl
You should be able to issue an intermediate cert by signing a CSR with
basicConstraints=CA:TRUE, but I havent tried it in the wild, so YMMV
On 4/5/06, Francisco Javier Martinez Martinez <[EMAIL PROTECTED]> wrote:
> Hello world.
>
> I am getting crazy I can't find the solution.
>
> Could anyone be
Hello world.
I am getting crazy I can't find the solution.
Could anyone be so kind of show me clues, examples, config files in order
to make an intermediate CA?
My scenario:
I issue certificates with openssl line commands.
I had issue a selfsigned CA root certificate and I could issue cert
The RSA_F4 parameter is what gives you
the E parameter value. Specifically 65537, or 010001 in hex.
Steven Pauly
Pitney Bowes GMS
"Nagy
Zoltán Márk" <[EMAIL PROTECTED]>
Sent by: [EMAIL PROTECTED]
04/05/2006 08:57 AM
Please respond to
openssl-users@openssl.org
To
openssl-users@opens
Hi all!
RSA *rsa;
rsa = RSA_new();
rsa = RSA_generate_key(512,RSA_F4,NULL,NULL);
printf ("E: %s\n",BN_bn2hex(rsa->e));
allways:
E: 010001
is normal???
king regards,
mark
__
OpenSSL Project htt
Hi, I'm using OpenSSL + Tomcat 5. I have configured OpenSSL & Tomcat successfully but it just 1-way authentication. Now I want both Server and Client authenticate each other. Can you help me? Thanks in advance! Hung.
How low will we go? Check out Yahoo! Messengers low PC-to-Phone call rat
21 matches
Mail list logo
