On Wed, Jul 06, 2016, Stephan M?hlstrasser wrote:
>
> While doing research on this, we found one thing that looks
> suspicious in the CMS objects generated by OpenSSL 1.0.2. When
> dumping the CMS object with dumpasn1, the key wrap algorithm is
> encoded as follows:
>
> SEQUENCE {
> OBJECT IDEN
On Wed, Jul 06, 2016, Stephan M?hlstrasser wrote:
> Am 06.07.16 um 05:15 schrieb Dr. Stephen Henson:
> >...
> >>Is the CMS object broken, or is this a problem in OpenSSL?
> >>
> >
> >Well the OpenSSL version does interop OK with the Bouncy Castle version of
> >ECDH and CMS. I've checked through yo
On Wed, Jul 06, 2016, Stephan M?hlstrasser wrote:
> So do I understand it correctly that OpenSSL currentls only supports
> RFC3278? Does that mean that it can't process CMS enveloped data
> objects that are created according to RFC5753?
>
OpenSSL should be able to decrypt either RFC3278 or RFC57
I'm building 1.0.1t with the no-srp option.When I do, I get thefollowing
error
making all in ssl...
make[1]: Entering directory `/users/scottn/openssl-1.0.1t/ssl'
make[1]: *** No rule to make target `../include/openssl/srp.h', needed by
`tls_srp.o'. Stop.
Anyone else build without SRP? An
Am 06.07.16 um 05:15 schrieb Dr. Stephen Henson:
...
Is the CMS object broken, or is this a problem in OpenSSL?
Well the OpenSSL version does interop OK with the Bouncy Castle version of
ECDH and CMS. I've checked through your test message and the problem is that
the AES unwrapping algorithm
Hi.
Is it possible to call the rsa_mod_exp method in RSA_METHOD structure for
more than one exponentiation?
E.g.: openssl `speed rsa -engine my_engine` will call rsa_mod_exp for every
single rsa sign/verify operation, but I want to queue, let's say 10 of
these operations and process them in a sing
Am 06.07.16 um 15:46 schrieb Dr. Stephen Henson:
...
Second the following:
129 10: [1] {
1318: OCTET STRING B1 04 4A FD FC 8B 70 6D
: }
If I match this correctly to RFC 5652, this is
ukm [1] EXPLICIT UserKeyingMaterial OPTIONAL
inside the K
Am 06.07.16 um 16:02 schrieb Dr. Stephen Henson:
On Wed, Jul 06, 2016, Dr. Stephen Henson wrote:
On Fri, Jul 01, 2016, Stephan M?hlstrasser wrote:
First the AlgorithmIdentifier includes the EC curve name:
40 19: SEQUENCE {
427: OBJECT IDENTIFIER ecPub
On Wed, Jul 06, 2016, Dr. Stephen Henson wrote:
> On Fri, Jul 01, 2016, Stephan M?hlstrasser wrote:
>
> >
> > First the AlgorithmIdentifier includes the EC curve name:
> >
> > 40 19: SEQUENCE {
> > 427: OBJECT IDENTIFIER ecPublicKey (1 2 840
> > 10045 2 1
On Fri, Jul 01, 2016, Stephan M?hlstrasser wrote:
> Hi,
>
> this message is related to another question that I sent with subject
> "Unable to decrypt CMS object encrypted with EC prime256v1
> certificate".
>
> Below I have included the full ASN.1 dump of the CMS object
> generated by a third-par
On 06.07.2016 09:37, Stuart Douglas wrote:
> Hi everyone,
>
> I am trying to implement a generic Java SSLContext that is backed by
> OpenSSL that uses dynamic loading to link to OpenSSL.
>
> This works well on Linux, however I am running into "no
> OPENSSL_Applink" issues on Windows. According
Hi everyone,
I am trying to implement a generic Java SSLContext that is backed by
OpenSSL that uses dynamic loading to link to OpenSSL.
This works well on Linux, however I am running into "no
OPENSSL_Applink" issues on Windows. According to the FAQ all that
should be required is including openssl
12 matches
Mail list logo
