Hi,
I want to start s_server using openssl, I use the following command:
openssl.exe s_server -accept 443 -cert ssl_cert.pem -key ssl_key.
pem
Unfortunately, when I try to connect to the server (for example using wget
https://ip:443 --no-check-certificate) I receive:
gethostbyname failure
0 i
On Mon, Jan 07, 2008, Bobby Krupczak wrote:
> Hi!
>
> I am writing a distributed application that will use SSL for privacy
> and authentication. The app will use its own CA to generate and sign
> certs.
>
> On initial startup, I'd like the application to generate its own cert
> and sign it usin
I seem to run into problems sending attachments to openssl-users. I
will send my test code directly upon request.
Ciju
--
Guys,
I am a high level user of code that uses OpenSSL so am not sure if
what I am seeing is an
Don't think this made through. Repeat attempt.
Ciju
Guys,
I am a high level user of code that uses OpenSSL so am not sure if
what I am seeing is an API bug or incorrect usage on my part.
My simple test (see attached zip) tries to load the
If somebody is interrested then begining of CMS signedData using
-genconf file is :
---
asn1=SEQUENCE:Signed_Data
[Signed_Data]
Objet= OBJECT:pkcs7-signedData
Exp=EXP:0,SEQUENCE:version
[version]
Version=INTEGER:01
Set= SET:algo
Data= SEQUENCE:data
Hi!
I am writing a distributed application that will itself be a signing
authority (for only itself).
On initial startup, I wanted the application to generate its own cert
request and sign it all from C-code w/o having to run the external
openssl command. Doing it from C-code directly makes the
Hi!
I am writing a distributed application that will use SSL for privacy
and authentication. The app will use its own CA to generate and sign
certs.
On initial startup, I'd like the application to generate its own cert
and sign it using C-functions rather than invoking the openssl
command. Doin
On Sun, Jan 06, 2008, e0317 wrote:
>
>
> hi,I am a new to Openssl .Today I wrote a programme with openssl and
> compliled in fc4.this is my command
> "gcc -o crl crl.c -I/usr/local/openssl/include -Wall
> -L/usr/local/openssl/lib -lssl -lcrypto"
> libssl and libcrypto are also in the right
Hi!
I want to use the i2b_PVK function defined in pvkfmt.c in the latest snapshot,
but this function is not declared in the pem.h
header. Is there a reason why i should not use this function?
Regards
Bernd
PGP.sig
Description: PGP signature
Hello,
> Does the openssl Eliptic Curve implementation of openssl support
Elliptic Curve Digital
> Signature Algorithm using curves with 256 and 384-bit prime moduli (as
specified in FIPS 186-2)?
Yes, 256 bit curve is called prime256v1 (or secp256r1), 384 bit curve is
called secp384r1.
You can
I think you can use : -passin pass:"yourpass" ...
Dr Franck ROUSSIA
Tran Son a écrit :
Hi all.
Whenever i create certificates using openssl i have to type my pass
phrase and something else. Now how can i create certificate just using
single commands with the pass phrase, country... in the par
Hello,
Does the openssl Eliptic Curve implementation of openssl support Elliptic Curve
Digital Signature Algorithm using curves with 256 and 384-bit prime moduli (as
specified in FIPS 186-2)?
Regards Roger
_
Mörkt och kallt? Kansk
Excuse ... server problems keeping emails since 8 days ...
Dr. Franck ROUSSIA
rfx a écrit :
I would like to subscrib to your mail list - openssl.org ...
Can't you tell me how to
Thank you
Dr Franck ROUSSIA
__
OpenSSL Project
hi,I am a new to Openssl .Today I wrote a programme with openssl and compliled
in fc4.this is my command
"gcc -o crl crl.c -I/usr/local/openssl/include -Wall -L/usr/local/openssl/lib
-lssl -lcrypto"
libssl and libcrypto are also in the right place but ' undefined reference to
RSA_generate_
Forwarded to openssl-users for public discussion.
Best regards,
Lutz
- Forwarded message from [EMAIL PROTECTED] -
Subject: how can I cross complier openssl
From: [EMAIL PROTECTED]
Date: Fri, 4 Jan 2008 10:26:22 +0800
Dear gentleman,
There is question in front of me that
An IGC need sign request certificat to subscribe only in CMS RFC2360
format so i would like (but i don't know if it's the best solution) to
make it using asn1parse and genconf functions.
I try to reproduce an example of CMS signeddata with first part is :
--
0:d=0 hl=4
Hi all.
Whenever i create certificates using openssl i have to type my pass phrase and
something else. Now how can i create certificate just using single commands
with the pass phrase, country... in the parameter list so i dont have to type
them separately.
I tried some command such as -passin o
Hello,
I observed that on few platforms, the random device is missing. Due to this,
the SSL_connect fails. I would have to use -rand option of s_client for
successful connection.
On such platforms, even my client application fails due to the missing random
number generator device.
For eg. On my
Hi,
On first hand please excuse me for my poor english.
I'm developping an application into which i would like to mount an SSL
tunnel using certificate and private key from a pkcs#11 token.
After having check code from openVPN or Stunnel, i don't understand the way
it is done.
Using the following
Hi.
Does anyone know if there is a way to subscribe to OpenSSL mailing
lists (user, devel, announce) without actually having the mail messages
delivered to may e-mail account?
I prefer to read the lists using the news.gnmane.org newsgroup interface.
Many thanks.
Best regards,
David Schwartz wrote:
Of course, for the reasons I told, I did not subscribe to:
"openssl-dev open subscribers Discussions on development of the
OpenSSL library.
Note that this is for development *of* *OpenSSL*. Just like the OpenSSL
users list is for users *of* *OpenSSL*.
Pretty sure you're
Hi,
I've been going through a lot of articles about setting the timeout value of
the SSL session, however I still haven't got any clue to how to do it.
Could you be so kindly in giving me ideas to do this.
Many thanks,
Jack
_
Expr
Hello,
can someone tell me with which function
to convert binary to haxadecimal after i use hash functions.
thanks
He.
Hello,
I need to port OpenSSL (0.9.8 or 0.9.7) to VxWorks 6.4 for SH4. In my
digging around, I see that people have done a linux-sh4 target, and
there are some vxworks-ppc ports. I don't know if I can combine them or
what...
Can anyone give me some pointers on the best way to get the port
An IGC need sign request certificat to subscribe only in CMS RFC2360
format so i would like (but i don't know if it's the best solution) to
make it using asn1parse and genconf functions.
I try to reproduce an example of CMS signeddata with first part is :
--
0:d=0 hl=
Hi Thomas.
I'm planning on purchasing and installing
Microsoft Visual Studio Professional 2008 out of my own pocket (since
almost no one donates). One of the first things I plan on doing is
creating a 64-bit binary build of OpenSSL.
Actually, why do you need to purchase the Studio in or
Hi,
I'm developping an application which use an ssl tunnel to send some datas.
Everything is ok, while my certificate and associated private key are stored
locally on my hard drive.
But i don't understand how to use use a smartcard for ssl handshake.
i'm using opensc engine_pkcs11 to communicate
Hi all,
I am using OpenSSL 0.9.7e version.
To improve our application performance, I need to use Dynamic locking
with SSL.
But I what appears is dynamic locks are not used internally with OpenSSL
0.9.7e version, dynamic locks were added in OpenSSL 0.9.5b-dev.
Please let me know if there
I need to know if I can execute openssl commands using VBs cript.
Can I get sample programms written in VBScrit/VB/VB.NET >>
How to sign a file using PFX file/PEM file
How to verify a file using PFX/PEM file
How to convert PFX into PEM and Back(PEM into PFX)
--
Regards
**
nils
>Frédéric Donnat wrote:
>
> Hi,
>
> Sorry for the mistake (nothing to deal with openssl.cnf file). I was just
> looking for ca.txt file.
>
> Is it normal behavior of openssl to be able to view a certificate without
> serial number using (without any error mentioned):
> openssl
sorry please ignore; this had been asked before:
http://www.mail-archive.com/openssl-users@openssl.org/msg41502.html
> From: [EMAIL PROTECTED]
> To: openssl-users@openssl.org
> Subject: signature failure when certificate contains no serial number (ie,
> not one that equals zero)?
> Date: Sat,
i was messing around with (self-signed) certificate creation/signing
and ran into this. the following two certificates are the same except
for the serial number: "with_serial" has a serial number that is zero,
and "no_serial" does not have any serial number.
the "with_serial" certificate verifies
An IGC need sign request certificat to subscribe only in CMS RFC2360
format so i would like (but i don't know if it's the best solution) to
make it using asn1parse and genconf functions.
I try to reproduce an example of CMS signeddata with first part is :
--
0:d=0 hl
An IGC need sign request certificat to subscribe only in CMS RFC2360
format so i would like (but i don't know if it's the best solution) to
make it using asn1parse and genconf functions.
I try to reproduce an example of CMS signeddata with first part is :
--
0:d=0 h
I would like to subscrib to your mail list - openssl.org ...
Can't you tell me how to
Thank you
Dr Franck ROUSSIA
__
OpenSSL Project http://www.openssl.org
User Support Mailing List
Hi all,
I am facing a strange issue with SSL_CTX_use_certificate_chain_file.
I get the following return error when I invoke it with location of my self
signed certificate (in pem format ) as parameter :
expecting an asn1 sequence
-
I seem to be getting an extra block of output for AES-128 in CBC and ECB modes
when using the EVP_EncryptUpdate mode. When using the BIO interface it appears
to work fine, and if I leave padding enabled and provide less than 1 block of
input (15 bytes instead of 16) then it seems to work fine.
37 matches
Mail list logo
