RE: Unknown message digest algorithm sha256RSA OpenSSL 1.0.1e

Hi Jakob, Thanks for the pointer. I was indeed running an old version - I need to find out where it was coming from! C:\Documents and Settings\junswort>openssl version OpenSSL 0.9.7b 10 Apr 2003 With correct version: C:\MetaAndDirectory\certs>openssl version OpenSSL 1.0.1e 11 Feb 2013 C:\MetaA

Does Openssl has definitions for SHA1 Functions?

Hello Team, Does Openssl has definition for SHA1_Init() , SHA1_Update() etc functions? If present, which file i can refer? I see only declarations for SHA1xxx functions. But no definition. Can you please direct? And also i would like to know one more thing that, is there any implementation differ

Re: Unknown message digest algorithm sha256RSA OpenSSL 1.0.1e

On 27-02-2013 23:54, John Unsworth wrote: I have a Windows CA that has created a sha256RSA CA cert and server cert. However OpenSSL fails to validate them. C:\MetaAndDirectory\certs>openssl verify -verbose -CAfile win2k8r2-ca.cer win2k8r2-server.cer win2k8r2-server.cer: /DC=net/DC=cp/DC=macc/CN=

Unknown message digest algorithm sha256RSA OpenSSL 1.0.1e

I have a Windows CA that has created a sha256RSA CA cert and server cert. However OpenSSL fails to validate them. C:\MetaAndDirectory\certs>openssl verify -verbose -CAfile win2k8r2-ca.cer win2k8r2-server.cer win2k8r2-server.cer: /DC=net/DC=cp/DC=macc/CN=macc-JOHN-WIN2K8R2-1-CA error 7 at 1 depth l

incore

Does anyone know what the incore script is supposed to do in some detail or point me to some documentation about it? I don't know perl and am struggling to get past a fingerprint mismatch error when attempting to enter FIPS mode. In the previous version (0.9.8r + FIPSv1.2.3), where incore was

Re: Unsupported Architecture ?

Thanks for the info Jakob. Are there any kind hearted souls out in Etherland who can expand on this for me? Kind reagrds, jB ;) - Original Message - From: "Jakob Bohm" To: openssl-users@openssl.org Sent: Wednesday, 27 February, 2013 9:14:13 PM Subject: Re: Unsupported Architecture ?

Re: Unsupported Architecture ?

On 2/27/2013 4:00 PM, Julian Bourne wrote: Hi & Regards to All, This is my first email to the group. Outline: I have a QNAP TS-410 on which I have installed a version of Debian Linux, rather than the official OS from QNAP. Linux DLSC3D75E 2.6.32-5-kirkwood #1 Sun Sep 23 22:53:30 UTC 2012 armv5t

Re: What is the reason for error "SSL negotiation failed: error:04075070:rsa routines:RSA_sign:digest too big for rsa key"

On 2/27/2013 3:14 PM, Dr. Stephen Henson wrote: On Wed, Feb 27, 2013, Nayna Jain wrote: Thanks Dr. Stephen and Victor for explanation Some questions further in this : Is there an API to configure programmatically , what hash algorithm it can use. My understanding is that final cipher

Re: Need understanding of SSLv23_xxx_method() API.. It is failing when SSLv23_client_method() connects to TLSv1_2_server_method()

Hi Viktor, Thanks for the link. I will look at it. I thought SSLv23_xxx_method() design is specific to openssl, and also error messages are specific to openssl. Also, can you give an idea on the cause for this error - "SSLV23_GET_SERVER_HELLO:SSLv3 handshake failure" ? Thanks & Regards, Nayna J

Re: Need understanding of SSLv23_xxx_method() API.. It is failing when SSLv23_client_method() connects to TLSv1_2_server_method()

On Wed, Feb 27, 2013 at 11:18:19PM +0530, Nayna Jain wrote: > I had asked few questions related to SSLv23_xxx_method API to understand > its internals. http://stackoverflow.com/questions/3938824/what-books-will-help-me-learn-everything-i-can-about-ssl-pki -- Viktor.

Need understanding of SSLv23_xxx_method() API.. It is failing when SSLv23_client_method() connects to TLSv1_2_server_method()

Hi, I had asked few questions related to SSLv23_xxx_method API to understand its internals. I am putting those questions here again.. How is it able to handle all the protocols SSLv3, TLSv1.x How does it decide which one to handshake with ? What is the first protocol_version sent in ClientHell

Unsupported Architecture ?

Hi & Regards to All, This is my first email to the group. Outline: I have a QNAP TS-410 on which I have installed a version of Debian Linux, rather than the official OS from QNAP. Linux DLSC3D75E 2.6.32-5-kirkwood #1 Sun Sep 23 22:53:30 UTC 2012 armv5tel GNU/Linux I am trying to compile Apache

Re: What is the reason for error "SSL negotiation failed: error:04075070:rsa routines:RSA_sign:digest too big for rsa key"

On Wed, Feb 27, 2013, Nayna Jain wrote: > Thanks Dr. Stephen and Victor for explanation > > Some questions further in this : > >Is there an API to configure programmatically , what hash algorithm it >can use. My understanding is that final ciphers which are selected are >for encrypt

How SSLv23_xxx_method() is able to handle all the protocols SSLv3, TLS1.x

Hi all, Can you please give me idea on some internals of how SSLv23_xxx_method() works ? How is it able to handle all the protocols SSLv3, TLSv1.x How does it decide which one to handshake with ? What is the first protocol_version sent in ClientHello Request ? Please explain Thanks & Regards

License Question: Including OpenSSL code in Linux kernel

Dear All, The linux kernel is including an AES implementation for ARM which comes from OpenSSL. I refer to the file: arch/arm/crypto/aes-armv4.S The file itself contains information about its license: @ @ Written by Andy Polya

draw a trust chain tree

Hi, I have a file which contains multiple certificates. I created it with cat command in linux. These certificates are related to each other I mean some of them are issuers of others, also there are some self signed CA certificate in there. Now i want to extract relation between these certificat