No, 'no-tlsext' option doesn't help..
Dave Thompson wrote:
From: owner-openssl-us...@openssl.org On Behalf Of Andrejs Igumenovs
Sent: Monday, 03 August, 2009 07:08
This succeed with "ssleay32.dll v0.9.8.4" and it fails with
"ssleay32.dll v0.9.8.11".
2009-08-03 13:40:25,911 DEBUG
[org.apa
> From: owner-openssl-us...@openssl.org On Behalf Of Michael Kurecka
> Sent: Monday, 03 August, 2009 09:25
> Is there a way to print/display the list of ciphers being used?
>
What do you mean used?
- negotiated for an SSL connection? SSL_get_current_cipher()
and the convenience macros using it
> From: owner-openssl-us...@openssl.org On Behalf Of Andrejs Igumenovs
> Sent: Monday, 03 August, 2009 07:08
> This succeed with "ssleay32.dll v0.9.8.4" and it fails with
> "ssleay32.dll v0.9.8.11".
> 2009-08-03 13:40:25,911 DEBUG
> [org.apache.tomcat.util.net.PoolTcpEndpoint] Handshake failed
Luiz Rafael Culik Guimaraes wrote:
> How to use properly SSL_read/SSL_write with select?
Make sure to set the socket/BIO non-blocking. Call SSL_read or SSL_write
when you want to read or write plaintext to/from the SSL connection. *Only*
call 'select' on the underlying socket if OpenSSL specific
Hi all I am a new user trying to setup OpenSSL with Freeradius. What I hope to
accomplish is having laptops with certificates as being trusted on the network
and be able to browse the Netware tree just like they would if they were wired
in. The current Novell implementation of 802.1x does not al
Please read the RFC on TLS to figure out how they're agreed upon.
As Dave Thompson said, you can use SSL_[CTX_]set_cipher_list to state
what algorithms you're willing to negotiate. If the peer doesn't
support any of them, then a "could not negotiate a common set of
security parameters" alert gets
Hello dear community
I faced some troubles for iphone and ssl cert:
I moved separate server from hardware to AWS Cloud with SSL certificate from
Register.com. It moved well, and phone application continue work with new
server without any problems.
Then I installed LoadBalancer (HAProxy and Stunnel
I figured out how to get the list of ciphers being used, but I can't
figure out how they were set or chosen. How are the ciphers set? Is
there a way to modify that list?
__
OpenSSL Project http://www
Hi ,
I built OpenSSL for a embedded platform using the commands as given below
CC=/opt_ga2/mv_pro_4.0/montavista/pro/devkit/arm/v5t_le/bin/arm_v5t_le-gcc
RANLIB=/opt_ga2/mv_pro_4.0/montavista/pro/devkit/arm/v5t_le/bin/arm_v5t_le-ranlib
export CFLAGS=-fPIC
./Configure linux-generic32
--prefix=/home
What remote application or software is it that is generating these errors?
Is it Java?
G.
-Original Message-
From: owner-openssl-us...@openssl.org [mailto:owner-openssl-us...@openssl.org]
On Behalf Of Biswatosh
Sent: 03 August 2009 15:32
To: openssl-users@openssl.org
Subject: Fw: Help
Hi,
As a sequel to the mail i sent today on the same issue, I found multiple
references in openssl user community but none seemed to be address my
problem precisely.
My questions are:
1)Does openssl accept that this is their bug? It looks to get manifested
when lot of load is there. This is not
Is there a way to print/display the list of ciphers being used?
On Fri, Jul 31, 2009 at 9:47 PM, Dave
Thompson wrote:
>> From: owner-openssl-us...@openssl.org On Behalf Of Michael Kurecka
>> Sent: Friday, 31 July, 2009 09:05
>
>> I'm using OpenSSL 0.9.8k and am trying to find the
>> implementation
Dear Friends
How to use properly SSL_read/SSL_write with select?
my default code with use standart api, make an call to select before call to
recv/send api
my code to read is like this
to Read i use
do
{
if( iPos == iAllocated - 1 )
{
iAllocated += iBufferSize;
Hi OpenSSL Gurus,
Firstly, please reply to me as I am not a member yet of your alias.
My multithreaded application uses openssl 9.6i and sometime gets error:
"SSL Error: error:1408F455:SSL routines:SSL3_GET_RECORD:decryption failed or
bad record mac."
Could anybody help me on this? I want to
Here is the implementation of the
BIO* get_bio_connection(char *host, char *port);
BIO* get_bio_connection(char *host, char *port)
{
BIO *bio = NULL;
int rc = 0;
if(host && (bio = BIO_new_connect(host)) && port)
{
rc = BIO_set_conn_port(bio, port
Hi,
Please consider the following:
SSL* get_ssl_connection(char *host, char *port)
{
SSL *ssl = NULL;
SSL_CTX *ctx = NULL;
BIO *bio;
int rc = 0;
if(ctx = get_ssl_context(host))
{
if(ssl = SSL_new(ctx))
{
if(bio = get_bio_connection(host, port))
I tried today to compile OpenSSL for MIPS / uClibc. I got following error
/opt/toolchains/crosstools_sf-linux-2.6.12.0_gcc-3.4.6-20_uclibc-0.9.28-20050817-20070131/bin/../lib/gcc/mips-linux-uclibc/3.4.6/../../../../mips-linux-uclibc/lib/crt1.o:
In function `__start':
crt1.S:(.text+0x1c): undefine
Hi Dr. Steve,
I have to implement a security solution using OpenSSL with pkcs 11 engine.
OpenSSL has engine object which supports pkcs 11 hardware acceleration
device. I was wondering that the underlining OpenSSL API which does
handshake is same as built-in software implementation as to pkcs11 hard
I was able to compile without build_test but the install directory only
contains libssl.a and libcrypto.a. I'm just missing the .so files .. something
wrong here?
> -Ursprüngliche Nachricht-
> Von: "Gerald Kallas"
> Gesendet: 03.08.09 02:31:56
> An: openssl-users@openssl.org
> Betreff:
19 matches
Mail list logo
