No response?
Could you please take some time to help me check it?
Thanks in advance!
thank you.
On Mon, Mar 2, 2009 at 8:36 PM, Claus Assmann
> wrote:
> Out of the box OpenSSL 0.9.8j fails to install on SunOS 5.10 ( cp:
> cannot access fipscanister.o). I found a mail in the archives about
> this and applied the patch to disable FIPS (see below). However,
> after doing that comp
Out of the box OpenSSL 0.9.8j fails to install on SunOS 5.10 ( cp:
cannot access fipscanister.o). I found a mail in the archives about
this and applied the patch to disable FIPS (see below). However,
after doing that compilation fails because fips.h is missing:
cc -I. -I.. -I../include -DOPENSSL_
Come posso disiscrivermi da questa newsletter??
2009/3/1 Luca Milanesio
> Dear Stephen Henson,
>
> I came into the same issue as Bryn about nested ASN.1 string parsing in
> OpenSSL since 0.9.7h.
>
> I understand the limit for infinite nesting in OCTET STRINGs but I came
> into an issue where
Steve,
thank you for your valuable feedback !
... I still have another question about the PKCS#7 envelopedData ...
> That structure is the encryptedContent field of PKCS#7 envelopedData
content
> type.
>
> >From PKCS#7...
>
> EncryptedContentInfo ::= SEQUENCE {
> contentType ContentType
On Mon, Mar 02, 2009, Kyle Hamilton wrote:
>
> A question: Is there/should there be a "FIPSCOMPAT" or equivalent
> string which can be added to the cipher string, to add all
> FIPS-specified ciphers to the cipher list? (I would also suggest
> "FIPS" as a standalone cipher string, which would onl
Hi
I have a problem is that I do not know how to generate a private key with
certificate.
I can generate a key without certificate by
openssl genrsa -out mykey.pem 1024
but this will only have the private key without certificate
-BEGIN RSA PRIVATE KEY-
MIICXAIBAAKBgQDByTcqmNpkVaGci
The biggest problem appears to be this: It's very slow going. One
machine operating in FIPS mode (especially, as I've mentioned
previously on this or another list, with Windows Server up to 2003 --
I have not yet tested 2008 or Vista) tends to prevent interoperability
with non-FIPS-validated syste
I believe problem is in "PKCS12 *p12 = d2i_PKCS12_bio(in, NULL);" because some
fields have valid data but no p12->version->data. Then, with "PKCS12_parse(p12,
"p", pkey, cert, NULL)", pkey and cert transform NULL value to correct data
in many fields, except some as x->cert_info->version->da
rajan chittil wrote:
... .I have seen in some fips enabled library, if one application gets
into fips mode , whole library will be in
fips mode and all the application in the system will be in fips mode.
That would be a strange library.
is this true for openssl ? Is the fips enabled at system
10 matches
Mail list logo
