Issue is not seen for Openssl version 1.0.2g. Issue is present for all
versions post 1.0.2g.
Thanks,
Ajay
On Fri, Jul 6, 2018 at 11:33 AM Ajay Nalawade
wrote:
> Here are some more observations.
> 1. It did not take much load to cause this error(Creating even 2
> connections in paral
5 minutes before trying again).
On Thu, Jul 5, 2018 at 6:29 PM Ajay Nalawade
wrote:
> package main
>
> import (
> "log"
> "net"
> "net/http"
> "fmt"
> "os"
> "bufio"
>
+
strconv.Itoa(len(buf))+"\r\n\r\n"), buf...)
_, err = conn.Write(resp)
if err != nil {
log.Print("Errored while writing response. Error: %v", err)
break
}
log.Printf("server: conn: wrote %d bytes
I am able to reproduce this issue with attached go lang based server. Am I
doing anything wrong here.
Is there any known issue, or any workaround available for this issue.
Thanks,
Ajay
On Thu, Jun 7, 2018 at 12:33 PM Ajay Nalawade
wrote:
> Hello,
>
> I have golang based openssl se
), read request fails
with following error.
"SSL errors: SSL routines:SSL3_GET_RECORD:decryption failed or bad record
mac"
If I disable FIPS mode, every thing runs fine. Is there any known issue
with version 1.0.2o with FIPS mode set.
Thanks a lot in advance,
Ajay
--
openssl-users maili
Help please... experts ?!!
On Fri, Nov 10, 2017 at 12:52 PM, Ajay Garg wrote:
> Hi All.
>
> I am using bleeding-edge openssl code, and wish to compile it for
> https://www.digikey.com/product-detail/en/microchip-
> technology/ATSAM4E8CA-AUR/ATSAM4E8CA-AURCT-ND/4140758
>
Hi All.
I am using bleeding-edge openssl code, and wish to compile it for
https://www.digikey.com/product-detail/en/microchip-technology/ATSAM4E8CA-AUR/ATSAM4E8CA-AURCT-ND/4140758
What is the best/recommended way to accomplish this?
Will be grateful for a reply.
Thanks and Regards,
Ajay
/EVP_Symmetric_Encryption_and_Decryption
and replaced the cbc with ctr function. Can someone please help me
understand the usage of AES CTR encryption using EVP api.
Thanks,
Ajay
--
openssl-users mailing list
To unsubscribe: https://mta.openssl.org/mailman/listinfo/openssl-users
Thanks guys.. that worked.
Seems I screwed up something while copying the 1.0.2_d version into our
framework.
Cloning again from scratch worked in first attempt.
Thanks a ton again for your valuable time !!
Thanks and Regards,
Ajay
On Mon, Feb 13, 2017 at 6:26 AM, Jeffrey Walton wrote
Any ideas please?
Is compiling openssl even possible on Raspberry-Pi?
On Sat, Jan 28, 2017 at 10:50 AM, Ajay Garg wrote:
> Hi Experts !!!
>
> Any help, please ?!!!
>
> On Sun, Jan 15, 2017 at 9:14 AM, Ajay Garg wrote:
>
>> Hi All.
>>
>> I am getting st
Hi Experts !!!
Any help, please ?!!!
On Sun, Jan 15, 2017 at 9:14 AM, Ajay Garg wrote:
> Hi All.
>
> I am getting stuck on the first step of configuring OpenSSL.
> Following are some of the diagnostics ::
>
>
> Open
r
ty/openssl/crypto/hmac'
Makefile:95: recipe for target 'links' failed
make[1]: *** [links] Error 1
make[1]: Leaving directory '/home/pi/instamsg-c/third_party/openssl/crypto'
Makefile:433: recipe for target 'links' failed
make: *** [links] Error 1
##
uites using their
stringified-forms.
Looking forward to some help from the experts :)
Thanks and Regards,
Ajay
--
openssl-users mailing list
To unsubscribe: https://mta.openssl.org/mailman/listinfo/openssl-users
Ping !!!
Upon code-browsing, I am beginning to feel that OpenSSL uses
program-buffer, which is used for malloc/free.
Am I right?
If yes, is there a place where the maximum-size of "in-program-buffer-heap"
is defined?
On Tue, Nov 22, 2016 at 7:33 PM, Ajay Garg wrote:
> Hi All.
don't have any
heap-memory.
So, what is the protocol for compiling OpenSSL for such systems?
I am sorry, but this is the first time I would be compiling for a non-OS
entity.
Will be thankful for inputs.
Thanks and Regards,
Ajay
--
openssl-users mailing list
To unsubscribe: https:
Hi Kim.
Thanks for the reply.
On 8 Nov 2016 11:59 a.m., "Kim Gräsman" wrote:
>
> On Tue, Nov 8, 2016 at 6:26 AM, Ajay Garg wrote:
> >
> > Is compiling on windows always such a pain? :(
> > On Linux, it compiled perfectly the first time itself.
>
&
ime itself.
On Mon, Nov 7, 2016 at 9:52 PM, Ajay Garg wrote:
> Oops.. sorry.
> OpenSSL-version is 1.0.2d, and nasm-version is 2.12.02.
>
>
>
> On Mon, Nov 7, 2016 at 9:31 PM, Jeremy Farrell
> wrote:
>
>> What version of OpenSSL? What version of nasm (nasm -v)? People
> Regards,
>jjf
>
> On 07/11/2016 11:42, Ajay Garg wrote:
>
> Oops... pardon me.
> The e) step was not done.
>
> The errors came right after step d)
>
> On 7 Nov 2016 3:36 p.m., "Ajay Garg" wrote:
&
Oops... pardon me.
The e) step was not done.
The errors came right after step d)
On 7 Nov 2016 3:36 p.m., "Ajay Garg" wrote:
> Hi All.
>
> Following are the steps I followed :
>
>
> ###
>
KE : fatal error U1077: '"C:\Program Files\Microsoft
Visual Studio 14.0\VC\N\nasm.EXE"' : return code '0x1'Stop.*
*###*
Any pointers how to solve this?
I will heartfully grateful.
Thanks and
I guess we need to look at OpenWrt for MIPS-versions of the libraries.
We do have a device running on MIPS, and linking the OpenWrt-versions of
libcrypto.a and libssl.a (with our framework-binary) works like a charm.
Thanks and Regards,
Ajay
On Mon, Oct 17, 2016 at 7:30 PM, craig_we
:)
Thanks and Regards,
Ajay
On Sun, Oct 16, 2016 at 10:09 PM, Salz, Rich wrote:
>
> > Also, I am not using Makefiles, rather compiling each "c unit" using gcc
> using first-principles.
> > Could that be an issue?
>
> Probably.
>
> Only "make" is
https://mta.openssl.org/mailman/listinfo/openssl-users
>
--
Regards,
Ajay
--
openssl-users mailing list
To unsubscribe: https://mta.openssl.org/mailman/listinfo/openssl-users
ssl/s3_clnt.c", I do not get any
strings for "sk_num", but I do get the strings of the form
"sk_SSL_COMP_num".
Also, I tried doing the following, but could not see any correlation :
*grep -r "define SSL_COMP"
~/openssl/openssl/*/home/ajay/openssl/openssl/cryp
, 2016 at 9:08 PM, Salz, Rich wrote:
> > grep -r ASN1_TIME\( ~/openssl/openssl/
> > /home/ajay/openssl/openssl/crypto/asn1/a_time.c:int
> i2d_ASN1_TIME(ASN1_TIME *a, unsigned char **pp)
>
> > How to search for such symbols in the cloned source-code?
>
> Much of the ASN1
Thanks Matt.
That helped.
However, I am now searching for symbols like ASN_TIME_it, but I get nothing
useful ::
*grep -r ASN1_TIME_it ~/openssl/openssl/*
/home/ajay/openssl/openssl/util/libeay.num:ASN1_TIME_it2715
EXIST:!EXPORT_VAR_AS_FUNCTION:VARIABLE:
/home/ajay/openssl/openssl/util
::
ASN1_OCTET_STRING_free
ASN1_OCTET_STRING_new
There are others too, but I guess that if I can be known how to retrieve
the above definitions, then others will follow similarly.
So, will be grateful to hear from you experts :)
Thanks and Regards,
Ajay
--
openssl-users
. */
}
}
What am I doing wrong?
On Wed, Oct 12, 2016 at 12:59 AM, Benjamin Kaduk wrote:
> On 10/11/2016 02:06 PM, Ajay Garg wrote:
>
> Hi All.
>
>
> a)
> In the call,
>
> int BIO_new_bio_pair(BIO **bio1, size_t writebuf1, BIO
> **bio2, size_
l-buffer that manages the complete
ssl-packet, most probably instantiated via the call
BIO* BIO_new(BIO_f_ssl());
Here too, is it possible to pass the buffer from application-layer
(because of same reasons as above)?
Will be grateful for pointers.
Thanks and Regards,
Ajay
--
openss
On Mon, Oct 10, 2016 at 2:47 PM, Ajay Garg wrote:
>
>
> On Mon, Oct 10, 2016 at 1:31 PM, Viktor Dukhovni <
> openssl-us...@dukhovni.org> wrote:
>
>>
>> > On Oct 10, 2016, at 3:52 AM, Ajay Garg wrote:
>> >
>> > If(BIO_should_read(socke
On Mon, Oct 10, 2016 at 1:31 PM, Viktor Dukhovni wrote:
>
> > On Oct 10, 2016, at 3:52 AM, Ajay Garg wrote:
> >
> > If(BIO_should_read(socket->ssl_bio) != 0)
> >
> > If(BIO_should_write(socket->ssl_bio) != 0)
>
> In Postfix, we don't bother
Hi All.
I guess all my theories are bang on, as the entire framework was integrated
seamlessly making use of the above "theories".
Thanks a ton to everyone, and extra thanks to Viktor 😊
Thanks and Regards,
Ajay
On 10 Oct 2016 6:34 a.m., "Ajay Garg" wrote:
> Thank
Following works :
If(BIO_should_read(socket->ssl_bio) != 0)
If(BIO_should_write(socket->ssl_bio) != 0)
With this, I could get the entire end-to-end workflow to work
Thanks a ton for all the help !!!
On Mon, Oct 10, 2016 at 11:50 AM, Ajay Garg wrote:
> Hi All.
>
> Ta
ket->inter_bio, socket->inter_bio);
BIO_set_ssl(socket->ssl_bio, socket->ssl, BIO_NOCLOSE);
On Mon, Oct 10, 2016 at 12:19 PM, Viktor Dukhovni <
openssl-us...@dukhovni.org> wrote:
>
> > On Oct 10, 2016, at 2:20 AM, Ajay Garg wrote:
> >
> >BIO *inte
cket->ssl_bio, NULL));
}
#
Right now, I am receiving 0 (zero) as the reason in both the cases, and
none of SSL_ERROR_WANT_WRITE or SSL_ERROR_WANT_READ (in either case).
Thanks and Regards,
Ajay
--
Regards,
Ajay
--
openssl-users mailing list
Damn the semicolon at the end :(
Sorry for the noise.
Thanks and Regards,
Ajay
On Mon, Oct 10, 2016 at 11:23 AM, Ajay Garg wrote:
> [Thanks Viktor, I made the change as suggested by you in the other
> incomplete email that I sent accidentally].
>
>
> Hi All.
>
> We are
ich is causing
BIO_new_bio_pair
to fail?
Thanks and Regards,
Ajay
--
openssl-users mailing list
To unsubscribe: https://mta.openssl.org/mailman/listinfo/openssl-users
t;SSL-Context-Certificate")
resetDevice();
}
if(!SSL_CTX_use_PrivateKey_file(solitary_ssl_ctx,
"/home/sensegrow/key", SSL_FILETYPE_PEM))
{
HANDLE_CATASTROPHIC_INIT_ERROR("SSL-Context-Key")
resetDevice();
}
ssl_init_successful = 1;
-
Sorry, the "send" button was clicked accidentally :(
On Mon, Oct 10, 2016 at 10:55 AM, Ajay Garg wrote:
> Hi All.
>
> We are just dealing with the client-side, and following are the steps ::
>
> SSL_library_init();
> OpenSSL_add_ssl_algorithms();
>
ries in step a), step b) and
8-point-story in step c) as per my previous email.
Thanks and Regards,
Ajay
On Mon, Oct 10, 2016 at 2:39 AM, Michael Wojcik
wrote:
>> From: openssl-users [mailto:openssl-users-boun...@openssl.org] On Behalf
>> Of Ajay Garg
>> Sent: Sunday, Oct
On Sun, Oct 9, 2016 at 10:55 PM, Viktor Dukhovni
wrote:
>
>> On Oct 9, 2016, at 10:47 AM, Ajay Garg wrote:
>>
>>> However, it might sometimes return SSL_ERROR_WANT_READ, in which
>>> case, the SSL layer wants to read, even though the application
>>> want
Hi Viktor.
On Fri, Oct 7, 2016 at 11:17 PM, Viktor Dukhovni
wrote:
> On Fri, Oct 07, 2016 at 10:30:06PM +0530, Ajay Garg wrote:
>
>> Ok, so for sending app-payload-bytes, we do a bio_write() to "bio1",
>> and if "bio1" requires reading f
Thanks Viktor.
On all our device-types, we are using blocking-sockets, but reads can
signal that no data is available (equivalent to SO_RCVTIMEO value set
as the socket-option on linux-like systems).
It seems you have provided me enough insight to get my hands dirty :)
Thanks and Regards,
Ajay
Thanks for the reply Viktor.
On Fri, Oct 7, 2016 at 8:27 PM, Jakob Bohm wrote:
> On 07/10/2016 16:35, Ajay Garg wrote:
>>
>> Hi Viktor.
>>
>> Thanks for your reply, and I am sorry for being idiotic, OpenSSL does
>> seem daunting, but I am learning :)
>>
&
into bio2, until
bio1 can produce at least x app-payload-bytes.
R3. Finally, App reads x app-payload-bytes.
Here too, I think R2 is the key-step architecturally.
Is my above architectural-understanding of the workflow between App
and Device-Specific-Socket correct?
Anyway, th
;bio2" (after "bio1" has
internally-transferred the bytes to "bio2") ?
* Reading from network via "bio2" (after which "bio1" can
internally-pick-up the bytes from "bio2") ?
Also, how do "bio1" and "bio2" communicate in case of non
On Fri, Oct 7, 2016 at 9:19 AM, Viktor Dukhovni
wrote:
> On Fri, Oct 07, 2016 at 08:51:24AM +0530, Ajay Garg wrote:
>
>> However, I am a bit unsure about certain implementations.
>> In particular (let's talk only about the client-side), I wonder how do
>> the foll
te",
"SSL_read" actually handle the root-level writes/reads (given that we
do not pass any "root-level-socket-write" and "root-level-socket-read"
callbacks before "SSL_write" and "SSL_read").
Looking forward to some help; I will be grateful fo
Thanks everyone for the quick and generous help !!
I am really thankful to everyone's time.
Thanks and Regards,
Ajay
On Tue, Apr 12, 2016 at 7:08 PM, Salz, Rich wrote:
>
>> Except when you want more people (usually everybody) access to the CRT,
>> but few people (usuall
the question becomes obsolete.
Anyhow, I am thanks (and sorry at the same time) for everyone's time.
Thanks and Regards,
Ajay
On Mon, Apr 11, 2016 at 8:56 PM, Viktor Dukhovni
wrote:
> On Mon, Apr 11, 2016 at 10:01:33AM +0530, Ajay Garg wrote:
>
> [ Subject: Are double-quotes va
Hi.
Could not find a definitive answer on google, so thought it would be
best to ask the experts :)
Thanks and Regards,
Ajay
--
openssl-users mailing list
To unsubscribe: https://mta.openssl.org/mailman/listinfo/openssl-users
s that are
independent of the TLS-Algorithm and Cipher-Suite).
I know I sound incredibly clueless, kindly bear with me ...
Thanks and Regards,
Ajay
On Sun, Aug 16, 2015 at 11:08 PM, Viktor Dukhovni <
openssl-us...@dukhovni.org> wrote:
> On Sun, Aug 16, 2015 at 02:44:54PM +0530, Ajay Garg wrot
ient-private-key obtained
from step 2, and then have it available to the client's software.
Looking forward to some pointers...
Thanks and Regards,
Ajay
___
openssl-users mailing list
To unsubscribe: https://mta.openssl.org/mailman/listinfo/openssl-users
the modulus matches.
###
[ajay@ajay certs]$ openssl rsa -in ssl.key -no
###
So, is a return value of "0" expected for these?
Looking forward to a reply.
Thanks and Regards,
Ajay
you are aware
of any info about this. Please let me know.
Thanks in advance.
Ajay Kumar
--
View this message in context:
http://www.nabble.com/Re%3A-SSL-per-session-memory-usage-tp961035p21714991.html
Sent from the OpenSSL - User mailing list archive at Nabble.com
vailable; ta
rget not built
NMAKE : warning U4010: 'out32dll\ssleay32.dll' : build failed; /K
specified, con
tinuing ...
NMAKE : warning U4011: 'out32dll\ssltest.exe' : not all dependents
available; ta
rget not built
NMAKE : warning U4010: 'out32dll\ssleay32.dll' : b
I am getting the following error when installing openssl using the VC++
C:\tmp\openssl-SNAP-20080915>nmake -f ms\ntdll.mak
Microsoft (R) Program Maintenance Utility Version 7.10.3077
Copyright (C) Microsoft Corporation. All rights reserved.
Building OpenSSL
perl util/copy.pl ".\crypto\b
I am getting the following error when installing openssl using the VC++
C:\tmp\openssl-SNAP-20080915>nmake -f ms\ntdll.mak
Microsoft (R) Program Maintenance Utility Version 7.10.3077
Copyright (C) Microsoft Corporation. All rights reserved.
Building OpenSSL
perl util/copy.pl ".\crypto\b
correctly. But I wanted to double check if
Openssl is indeed behaving correctly. Any suggestion?
If so, is there anyway to make openssl to accept certificate with keyUsageSign
bit in keyUsage extention is not set ?
Regards,
Ajay
i was able to compile for Pocket PC 2002 (WinCE 3.0) using embedded VC++
3.0 and it works fine. the only problem was there wasn't a random source
to seed the PRNG. to get around it, i used a .rnd file with random data.
i dont know about using it with .NET C#. I used it with Python.
cheers
Quot
hi!
i posted earlier about an error when running OpenSSL on WinCE
random number generator:SSLEAY_RAND_BYTES:PRNG not seeded.
what is the random number generator used for? is it possible not to use the
random number generator, or provide your own random number?
thanks
cheers
---
hi!
i have written an application using OpenSSL for WinCE. when i run it, i get
an error saying random number generator:SSLEAY_RAND_BYTES:PRNG not seeded.
from the doc, it seems the only soln i have is to use a .rnd file (WinCE
doesn't have a /dev/urandom as far as i know). The problem is i am
hi!
i have a python wrapper around OpenSSL and it builds fine. but when i
import it, it throws the following error
ImportError: ld.so.1: python: fatal: relocation error: file ./_testssl.so:
symbol OPENSSL_add_all_algorithms_noconf: referenced symbol not found
it seems to be coming from the Open
hi!
i am trying to build openssl 0.9.7d on a solaris.
configure works fine.
but when i do make, i get the following error
bash$ make
making all in crypto...
make[1]: Entering directory
`/n/filer12/u2/hons2004/abrar1/bin/openssl-0.9.7d/crypto'
( echo "#ifndef MK1MF_BUILD"; \
echo ' /* auto-genera
get it to find the
SDK include directory without having to copy the header files.
if anyone has already built openssl for a pocketpc2002, would you mind
sharing the DLL.
also has anyone used Python with openSSL on a pocket pc?
help would be
Thanks Charles
I'll try this one
Ajay.
- Original Message -
From: "CHARLES CHEBLI" <[EMAIL PROTECTED]>
To: <[EMAIL PROTECTED]>
Sent: Thursday, April 03, 2003 6:05 PM
Subject: Re: seeding the PRNG on Windows
> Hi
> You can use egads that is free an
there are no
"/dev/*random" devices. Also since I'm developing a server application,
hence I thought that the "RAND_screen" function also might not be too
helpful.
Thanks in advance,
Ajay.
_
68 matches
Mail list logo
