This is a protocol called OCSP, with its "designated responder" mechanism.
If you want to implement it, call the OCSP functions with the DR
address and the fields that OCSP needs during the SSL_CTX_set_verify()
callback invocation; if you really need to, create two separate
SSL_CTX contexts, one o
Hi,
I am just wondering if there is a way to realize the following scenario
with the help of OpenSSL libraries, here is the brief explanation in
this regard.
-
I have a client and Server who need to setup a secure connection using
TLS/SSL. But as part of handshak
Dear guys,
I would to have some bright understand about AES cihper in openssl, based
what i understand it used a table loookupt to speed the performance of AES
operation.
What i would to know, is there any way to disable this table lookup feature
? Why i do in that way ? it is just a matter of curi
Hi
Coping the header files will be a tedious task, as these files require other
header files. Instead you can reinstall the tool kit package. And also you
can use locate command to make sure the header file are installed in
/usr/include or any other location.
If its other than /usr/include or /usr
DER is a proper subset of BER. Thus, any BER decoder can also decode
DER; DER simply removes the 'indefinite length' string forms and a
couple of other forms from the acceptable vocabulary.
The reason for this is that all of the information necessary to make
an X.509 certificate should already be
On Sun April 5 2009, Ted Mittelstaedt wrote:
> This is from /openssl-SNAP-20090405 on Solaris x86 ver 2.5.1 using
> gcc 2.95.3:
>
> gcc -I.. -I../.. -I../asn1 -I../evp -I../../include -fPIC -DOPENSSL_PIC
> -DOPENSSL_THREADS -D_REENTRANT -DDSO_DLFCN -DHAVE_DLFCN_H -O3
> -fomit-frame-pointer -marc
On Mon, Apr 06, 2009 at 06:29:17PM +0530, Anil Tambe wrote:
> is the binary compatibility broken in 0.9.8k ?
Not necessarily.
> i see the below symbols missing from 0.9.8k library .. which were present in
> 0.9.8g ..
If you compile with "tlsext" enabled (default changed from 0.9.8i,
don't know
On Tue, Mar 31, 2009 at 12:15 PM, Patrick wrote:
> I'm trying to compile OpenSSL 0.9.8k on Win32 with MinGW installed. I
> ran ms/mingw32.bat, and it seems to work well for a while, compiling
> lots of source files, until I get:
>
> if exist out\libcrypto.a del out\libcrypto.a
> /usr/bin/sh: -c: l
is the binary compatibility broken in 0.9.8k ?
i see the below symbols missing from 0.9.8k library .. which were present in
0.9.8g ..
md4_block_host_order
DES_xwhite_in2out
sha256_block
sha256_block_host_order
sha512_block
sha1_block_asm_data_order
sha_block_host_order
BIO_dgram_should_retry
ripem
Hello,
when trying to authenticate againstan ldap server, I get the following
TLS errors:
connection_get(16)
connection_get(16): got connid=0
connection_read(16): checking for input on id=0
connection_read(16): TLS accept failure error=-1 id=0, closing
connection_closing: readying conn=0 sd=16
Hello,
Thank you for the solution.
I have used (at client side, before SSL_connect) SSL_set_verify
SSL_VERIFY_PEER mode and I have put NULL instead of verify callback in order
to use the default callback. But with SSL_get_error I get SSL_ERROR_SSL. I
use a self-signed certificate. Could be this
Forwarded to openssl-users for public discussion.
Best regards,
Lutz
- Forwarded message from Guillaume Blais -
From: Guillaume Blais
To: r...@openssl.org
Subject: Question: using OpenSSL without DLL
Date: Sun, 5 Apr 2009 17:33:02 +
Importance: Normal
hi,
I'm Usi
Forwarded to openssl-users for public discussion.
Best regards,
Lutz
- Forwarded message from new conf -
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed;
d=gmail.com; s=gamma;
h=domainkey-signature:mime-version:received:date:message-id:subject
:from:to
Good Ping, Openssl-users openssl-us...@openssl.org.
Can't build 0.9.8k under windows 7. Use MSVS 2008
Here is the logs:
[MASM]
Configuration: http://www.everfall.com/paste/id.php?g9w100z4ofjq
Compilation: http://www.everfall.com/paste/id.php?m5kycubuj0z5
[No asm]
Configuration: http://www.ev
14 matches
Mail list logo
