Is it possible to build a shared library that incorporates fipscanister.o,
where fipscanister.o is already built as per rules specified in users guide
and security policy. Is that shared library will be a validated one to be
used by an independent application. I have my own shared library which is
On 04/12/11 06:48, Zico wrote:
>> Try openssl x509 -in (certfile.pem) -noout -text
>> and openssl rsa -in (privkey.pem) -noout -text
>> and look at the modulus for each. They should match.
>>
> Thanks Dave for your nice reply. I am little bit confused here in these two
> commands. What does "text"
On Tue, Apr 12, 2011 at 3:53 AM, Dave Thompson wrote:
> Try openssl x509 -in (certfile.pem) -noout -text
> and openssl rsa -in (privkey.pem) -noout -text
> and look at the modulus for each. They should match.
>
>
Thanks Dave for your nice reply. I am little bit confused here in these two
commands.
Hi,
I'm fairly new to OpenSSL. How do I convert the rsa generated by
rsa_keygen_ex() into a public and private key?
Is there a way to do that?
-Original Message-
From: owner-openssl-us...@openssl.org [mailto:owner-openssl-us...@openssl.org]
On Behalf Of Ruden Estolonio
Sent: Tuesday, Ap
On Mon, 2011-04-11 at 17:53 -0400, Dave Thompson wrote:
> > From: owner-openssl-us...@openssl.org On Behalf Of pattabi raman
> > Sent: Sunday, 10 April, 2011 08:14
>
> > I am using the below code snippet and am able to do the encytption.
>
> > But I need to convert the enc
Hello List,
new user here. Wondering if it's possible to do as I mention in the subject
of the email. I downloaded the source from the openssl site and compiled it
with the target being linux64-sparcv9 (or something) and was hoping that the
'Configure' script would take into account that it's a 64
On Mon, Apr 11, 2011 at 05:53:45PM -0400, Dave Thompson wrote:
> Is /etc/pki/tls/cert.pem a file or a directory?
> -CApath and -CAfile are different. Use the right one.
That was a typo on my end; I've been messing with both a concatenated
set of PEM certificates, and a directory. Once the typo is
> From: owner-openssl-us...@openssl.org On Behalf Of Zico
> Sent: Sunday, 10 April, 2011 01:18
> Hi, I am trying to convert my one pem file to pkcs12 format
> using the command, but I am getting the error:
> "No certificate matches private key"
> I
> From: owner-openssl-us...@openssl.org On Behalf Of pattabi raman
> Sent: Sunday, 10 April, 2011 08:14
> I am using the below code snippet and am able to do the encytption.
> But I need to convert the encrypted format to Binary format inorder
> to pass the encr
> From: owner-openssl-us...@openssl.org On Behalf Of Brian Reichert
> Sent: Monday, 11 April, 2011 11:03
> I was hoping to get a better understanding of how to use 'verify'
> to verify server certificates.
>
> Om my CentOS host, I can direct 's_client' to use the default
> CA certificate store to
Looks like a bug in the compiler tool-chain. Consider rolling back to
something stable. If you're willing, you might want to scan the gcc bug
database in case this is a known issue, and perhaps report it if it
isn't? It might also be some system library the tool-chain is linked
against, who kno
I was hoping to get a better understanding of how to use 'verify'
to verify server certificates.
Om my CentOS host, I can direct 's_client' to use the default
CA certificate store to to collect a Google SSL certificate, and this
passes a verify check:
# openssl s_client -CApath /etc/pki/tls/cer
Hi,
I want to create shared library by statically linking my object file
with libcrypto.a. I am using the following command
FIPSLD_CC=g++ /usr/local/ssl/fips/bin/fipsld -shared -fPIC -o libshared.so
libfips.o -L/usr/local/ssl/fips/lib/libcrypto.a
it gives the following error:
/usr/local/s
Hi all
I have a client and server that communicate with PSK-AES128-CBC-SHA. In
making openssl I selected no-tlsext. What I see is that client initiates
legacy renegotiation and server supports and accepts it. I did not set
the SSL_OP_ALLOW_UNSAFE_LEGACY_RENEGOTIATION.
Would you think this i
Thanks for the reply. How do I transfer or copy the keyfile generated by
RSA_keygen_ex()?
From: owner-openssl-us...@openssl.org [mailto:owner-openssl-us...@openssl.org]
On Behalf Of pattabi raman
Sent: Sunday, April 10, 2011 8:14 PM
To: openssl-users@openssl.org
Subject: Re: RSA key
Hi,
I am u
Hi,
> I am using the below code to do the encytption of the publickey and it
> works fine.
>
> But I need to convert the encrypted format to Binary format inorder to pass
> the encrypted key to a different system.
>
pls suggest how to do the same ??? How can I convert the encrypted message
to
Thank you for the reply.
11.04.2011, 07:18, "David Schwartz" :
> On 4/10/2011 3:03 PM, Anton Vodonosov wrote:
>
>> The question: if I provide locking_callback, will it be called only from
>> the threads where I invoke OpenSSL functions,
>> or OpenSSL may call it from some private/internal threa
17 matches
Mail list logo
