RE: openSSL 1.0.0g on hpux-11i

I'll answer my own question in hopes of saving someone else some time some day. The openssl self-test is apparently quite enthusiastic about using up entropy. Starting egd with the "--bottomless" parameter allowed the openssl make test to proceed to completion. This egd feature is mentioned in it

x509 -nameopt show_type crash

If I run openssl x509 -nameopt show_type -noout -text -in user-a1.crt against the certificate below, the openssl command line program appears to crash in the middle of printing the certificate information. My output appears as: Certificate: Data: Version: 3 (0x2)

Re: Cannot get openssl-1.0.1 into fips mode

On Mon, Mar 05, 2012, Jacob White wrote: > After downloading openssl-1.0.1beta3 and using "perl Configure VC-WIN32 > fips enable-static-engine" before ms\do_nasm. I get the same errors with > different numbers. > > set OPENSSL_FIPS=1 > openssl md5 README > Error: > "4076:error:2D06B06F:FIPS_routi

RE: P-256 curve not supported in openssl 1.0.1?

Hi Bin, The OpenSSL names for P-256 and P-384 are prime256v1 and secp384r1. Erik Erik Tkal Juniper OAC/UAC/Pulse Development From: owner-openssl-us...@openssl.org [mailto:owner-openssl-us...@openssl.org] On Behalf Of Bin Lu Sent: Monday, March 05, 2012 3

P-256 curve not supported in openssl 1.0.1?

When I run the following command: % openssl ecparam -list_curves It lists ... secp192k1 : SECG curve over a 192 bit prime field secp224k1 : SECG curve over a 224 bit prime field secp224r1 : NIST/SECG curve over a 224 bit prime field secp256k1 : SECG curve over a 256 bit prime field secp

Re: Providing libraries for Crypto::SSLeay

I've installed openssl 1.0.0g, but I'm still receiving an error when running the following command. The error is a different one, however: $ sudo cpan install Crypt::SSLeay Going to read '/Users/REDACTED/.cpan/Metadata' Database was generated on Mon, 05 Mar 2012 03:11:57 GMT Running install fo

Re: Cannot get openssl-1.0.1 into fips mode

After downloading openssl-1.0.1beta3 and using "perl Configure VC-WIN32 fips enable-static-engine" before ms\do_nasm. I get the same errors with different numbers. set OPENSSL_FIPS=1 openssl md5 README Error: "4076:error:2D06B06F:FIPS_routines:FIPS_check_incore_fingerprint:fingerprint does not mat

Re: client certificates suddenly not accepted anymore: squid: SSL unknown certificate error 12

I probably shouldn't have posted so hastily. Now I think that it it more of a squid problem, because if I put stunnel in front of it, stunnel handels the certificates fine. pfSense 2.0.1 (FreeBSD 8.1-RELEASE-p6)stunnel-4.35 openssl-1.0.0_5 __

client certificates suddenly not accepted anymore: squid: SSL unknown certificate error 12

I am using squid as a reverse proxy with client certificates and everything was working fine for a month. But after 02 MAR 2012 17:56 CET client certificates stopped working even though my self signed ca and certificates are valid way longer. I think it might be an openssl problem, but feel free

Re: Cannot get openssl-1.0.1 into fips mode

On Mon, Mar 05, 2012, Jacob White wrote: > >From the command prompt I run: > openssl version -a > Error: "5156:error:2D06B06F:FIPS > routines:FIPS_check_incore_fingerprint:fingerprint does not > match:.\fips\fips.c:229:" > > set OPENSSL_FIPS=1 > openssl md5 README > Error: "2456:error:2D06B06F:FI

Re: Providing libraries for Crypto::SSLeay

On 3/5/2012 6:17 PM, SB Tech wrote: Hi, Specs: OS X 10.7.3; latest version of Prowl.pl. I was attempting to use the Prowl.pl script to send notifications to Prowl via a script. This script requires the installation of Crypt

Re: Cannot get openssl-1.0.1 into fips mode

>From the command prompt I run: openssl version -a Error: "5156:error:2D06B06F:FIPS routines:FIPS_check_incore_fingerprint:fingerprint does not match:.\fips\fips.c:229:" set OPENSSL_FIPS=1 openssl md5 README Error: "2456:error:2D06B06F:FIPS routines:FIPS_check_incore_fingerprint:fingerprint does n

Providing libraries for Crypto::SSLeay

Hi, Specs: OS X 10.7.3; latest version of Prowl.pl. I was attempting to use the Prowl.pl scriptto send notifications to Prowl via a script. This script requires the installation of Crypto::SSLeay. However, it transpires that Cry

RE: openssl compile time error

What does your configure command line look like? Did you disable AES or DES perhaps? -Tom From: owner-openssl-us...@openssl.org [mailto:owner-openssl-us...@openssl.org] On Behalf Of aram_baghom...@hushmail.com Sent: Sunday, March 04, 2012 8:39 AM To: openssl-users@openssl.org Subject: openssl c

openssl compile time error

Hi, When i want to compile my openssl package it send me this error. ... shlib_target=; if [ -n "" ]; then shlib_target="dlfcn"; fi; LIBRARIES="-L.. -lssl -L.. -lcrypto" ; make -f ../Makefile.shared -e APPNAME=openssl OBJECTS="openssl.o verify.o asn1pars.o req.o dgst.o dh.o dhparam.o enc.o p