2009/5/29 jazeltq :
> 在2009-05-28,"Victor Duchovni" 写道:
>>On Thu, May 28, 2009 at 11:51:42AM +0200, Ger Hobbelt wrote:
>>
>>Only if the data is text. Using strlen() on binary data is another
>>classic/basic 'C' programming mistake.
> if it is binary data, what to do ? Use a Variable to send the t
Hi ,
I am making a CA site for my college project purpose.I learned that
different browsers use different methods to generate CSR.Making CSR in IE
was easy.For vista systems I used CertEnroll.dll methods and for non-vista
IE i used xenroll.dll.I generated CSR in javascript successfully using that.
Yes i think i did. But then next time i tried build using nmake -f
ms\ntdll.mak install
And the same error occurred.
-Original Message-
From: owner-openssl-us...@openssl.org
[mailto:owner-openssl-us...@openssl.org] On Behalf Of Carter Browne
Sent: 28 May 2009 20:47
To: openssl-users@openss
在2009-05-28,"Victor Duchovni" 写道:
>On Thu, May 28, 2009 at 11:51:42AM +0200, Ger Hobbelt wrote:
>
>> This is a classic/basic 'C' programming mistake you made, not an OpenSSL one:
>>
>> pointers are not arrays are not strings ;-)
>>
>> sizeof(buf) == ?
>>
>> buf is of type 'char *' and ther
> From: owner-openssl-us...@openssl.org On Behalf Of loodafan
> Sent: Wednesday, 27 May, 2009 06:59
> I have a question regadring conversion of a SSH2 key to
> either a pem or der file.
> Is this possible only using OpenSSL? Or do I first need to
> convert the SSH2 key to something else before
> From: owner-openssl-us...@openssl.org On Behalf Of Hoel, John
> Sent: Wednesday, 27 May, 2009 20:24
> I am testing a server that supports encryption without
certificates.
> Build is 0.9.8k. When I test it with 'openssl s_client -connect
host:port',
> [..
> In the case I get an epoll-triggered recv() from the socket, do I dump
> that data into the BIO via BIO_write, and follow that with a
> SSL_read()?
> -Aaron
No, you are still trying to treat it like a pipe. It is not. It has four
*INDEPENDENT* ports.
The fact that you received encrypted data
Hello Victor,
Just want to clarify. Should the complete code look like this ?
ctx = SSL_ctx_new();
myssl = SSL_new(ctx);
BIO_new_bio_pair(app_bio, 0, net_bio, 0);
SSL_set_bio(myssl, app_bio, app_bio);
n = SSL_write(myssl, buffer, len);
err = SSL_get_error(myssl, n);
BIO_read(net_bio, buf, size
Hi,
I have a question about using X509_verify_cert(X509_STORE_CTX) - Where does
the root certificate get populated in the struct X509_STORE_CTX, is it
suppose to be included?
Thanks,
Jerry
You're on the right track, but you have to consider how much data can be
written to the encrypted side of the bio pair before you read it from
the socket, and the fact that you might have to read from the encrypted
side of the bio pair and write to the socket to get things going (i.e.
send the init
On Thu, May 28, 2009 at 3:32 PM, Victor Duchovni
wrote:
> NO! You call
>
> n = SSL_write(myssl, buffer, len);
> err = SSL_get_error(myssl, n);
>
> "err" may be SSL_ERROR_WANT_READ or SSL_ERROR_WANT_WRITE, in which case
> you must retry the write again later, after there is room.
>
>
HI,
I solve my issue, I add flags PKCS7_BINARY and now work fine.
Now i have another question.
What is the difference? I see asn1parse of sample with and without
flags and the PKCS7 content is different. why ?
Thank for help.
2009/5/28 Dr. Stephen Henson :
> On Thu, May 28, 2009, Marco Monacelli
On Thu, May 28, 2009 at 02:48:34PM -0400, Aaron Wiebe wrote:
> On Tue, May 26, 2009 at 5:27 PM, Victor Duchovni
> wrote:
> > On Tue, May 26, 2009 at 05:02:59PM -0400, Aaron Wiebe wrote:
> >
> >> >> You're looking for a BIO_s_mem.
> >> >
> >> > No, he is looking for BIO_new_bio_pair(3) and SSL_set
Hi,
I have a question about using X509_verify_cert(X509_STORE_CTX) - Where does
the root cert go for X509_STORE_CTX, is it suppose to be included?
Thanks,
Jerry
Hello,
Thanks for the great work and all the time dedicated to
create and maintain OPENSSL. I have a question in regards to the latest
1.0.0 snapshot. When I try to build OPENSSL using the latest 1.0.0
snapshot (1.0.0-stable-SNAP-20090527) in WIN32 with debug (environment
debug-VC-W
Hi All,
I have built the OpenSSL 0.9.8j library with FIPS capability on Mac OSX
10.5.5(Leopard).
When i am loading libcrypto.dylib and libssl.dylib in my own platform on OSX
10.5.5 it is doing properly,
but when i try to load these two libraries on Mac OSX 10.4 it gives me error
:: malformed objec
Hi, i get the below compilation error when i try to build openssl-0.9.8k
using visual studio 2008.
C:\Program Files\Microsoft Visual Studio 9.0\VC\INCLUDE\sal.h(1984) : fatal
erro
r RC22105: MultiByteToWideChar failed.
NMAKE : fatal error U1077: '"C:\Program Files\Microsoft
SDKs\Windows\v6.0A\bin
On Tue, May 26, 2009 at 5:27 PM, Victor Duchovni
wrote:
> On Tue, May 26, 2009 at 05:02:59PM -0400, Aaron Wiebe wrote:
>
>> >> You're looking for a BIO_s_mem.
>> >
>> > No, he is looking for BIO_new_bio_pair(3) and SSL_set_bio(3).
So, apologies for hammering this down, but I'm still a little fuzz
My apologies for wasting anyone's time, but the changes did work. I did the
make without the make install. Thank you for your help.
I've updated to using the EVP_Digest.. as shown below, but I'm still
experiencing the same problem. Am I still doing something wrong?
void md5_vector(size_t num_elem, const u8 *addr[], const size_t *len, u8 *mac)
{
EVP_MD_CTX ctx;
// MD5_CTX ctx;
size_t i;
unsigned int mac_len;
int s
Are you static linking libcrypto library while building the your JNI
application. If you are dynamic loading the library , then it will not fipas
capability. Please
reading USER guide of fips .
On Fri, May 22, 2009 at 8:28 PM, Adams, Carl wrote:
> Hello,
>
>
>
> Is the use of the FIPS OpenSSL m
On Thu, May 28, 2009, Gregory Street wrote:
> We are encountering an error when trying to link openssl-fips using Sun
> Studio. When we use C++ we are getting
>
> line 71: Error: Cannot use const char[41] to initialize const unsigned
> char[40]
>
>
>
Which FIPS module are you using 1.1.2 o
On Thu, May 28, 2009, Victor Duchovni wrote:
> On Thu, May 28, 2009 at 09:54:00AM -0500, Michael Kurecka wrote:
>
> > success1 = MD5_Init(&ctx);
>
> Where is the indirection through the EVP digest interface? I would expect
> direct calls to raw cryptographic primitives to continue to succeed.
>
Thanks for the quick response. I will look into how to implement using
EVP_Digest.
On Thu, May 28, 2009 at 10:01 AM, Victor Duchovni <
victor.ducho...@morganstanley.com> wrote:
> On Thu, May 28, 2009 at 09:54:00AM -0500, Michael Kurecka wrote:
>
> > success1 = MD5_Init(&ctx);
>
> Where is the ind
I had no problems with this Visual Studio 9.0 on XP SP 3. Do you do:
nmake -f ms\ntdll.mak
before the
nmake -f ms\ntdll.mak install
?
Carter
Carter Browne
CBCS
cbro...@cbcs-usa.com
781-721-2890
Vivek Subbarao wrote:
>
> Hi
>
>
>
> I am getting the below mentioned compilation error when
On Thu, May 28, 2009 at 09:54:00AM -0500, Michael Kurecka wrote:
> success1 = MD5_Init(&ctx);
Where is the indirection through the EVP digest interface? I would expect
direct calls to raw cryptographic primitives to continue to succeed.
If so, don't call MD5_Init() in FIPS applications.
--
I'm hoping someone can help me understand the fact that I enabled FIPS but
the MD5 hash functionality is still working.
I built the FIPS object module using openssl-fips-1.2 on a linux system
./config fipscanisterbuild no-asm
make
make install
then built the FIPS capable O
On Thu, May 28, 2009 at 11:51:42AM +0200, Ger Hobbelt wrote:
> This is a classic/basic 'C' programming mistake you made, not an OpenSSL one:
>
> pointers are not arrays are not strings ;-)
>
> sizeof(buf) == ?
>
> buf is of type 'char *' and therefore sizeof(buf) == sizeof(char *)
> which is pr
We are encountering an error when trying to link openssl-fips using Sun
Studio. When we use C++ we are getting
line 71: Error: Cannot use const char[41] to initialize const unsigned
char[40]
We also changed the fipsld script to compile fips_premain.c using the C
compiler, this results in som
On Thu, May 28, 2009, Marco Monacelli wrote:
> I i have a littel problem with last beta of openssl.
> I compile the demos CMS\PKCS7 cms_sign2.c with VS2005 and work fine with the
> test file present in demos directory.
> If i try different sign data, for example i try to sign 250 MB of rar i
> hav
On Thu, May 28, 2009, Vivek Subbarao wrote:
> Hi
>
>
>
> I am getting the below mentioned compilation error when i try to build
> openssl-0.9.8k using visual studio 2008.
>
>
>
> C:\Program Files\Microsoft Visual Studio 9.0\VC\INCLUDE\sal.h(1984) :
> fatal error RC22105: MultiByteToWideCha
Hi
I am getting the below mentioned compilation error when i try to build
openssl-0.9.8k using visual studio 2008.
C:\Program Files\Microsoft Visual Studio 9.0\VC\INCLUDE\sal.h(1984) :
fatal error RC22105: MultiByteToWideChar failed.
NMAKE : fatal error U1077: '"C:\Program Files\Microsoft
This is a classic/basic 'C' programming mistake you made, not an OpenSSL one:
pointers are not arrays are not strings ;-)
sizeof(buf) == ?
buf is of type 'char *' and therefore sizeof(buf) == sizeof(char *)
which is probably 4 or 8, depending on what platform you build this
for.
If you wish to p
I i have a littel problem with last beta of openssl.
I compile the demos CMS\PKCS7 cms_sign2.c with VS2005 and work fine with the
test file present in demos directory.
If i try different sign data, for example i try to sign 250 MB of rar i
have some problem.
The result file non content the full inp
Hi,
I've applied the attached patch to OpenSSL 0.9.8k. Everything (build, etc) goes
fine. However, I noticed that the 'cryptoeay32-0.9.8.dll' isn't created. It's
missing. If I build OpenSSL without the patch, it works perfectly. I'm using
MinGW environment. Can anybody help me out? Am I mis
hello,
#include
2 int main() {
3 BIO * b;
4char buf[100] = "hello world \n";
5 b = BIO_new(BIO_s_file());
6 BIO_set_fp(b, stdout, BIO_NOCLOSE);
7 BIO_write(b, buf, sizeof(buf));
8 return 0;
9 }
after compile , and run, i can see the hello world
but if
36 matches
Mail list logo
