Hi, crypto guys!
I have problem with EVP_PKEY_decrypt() function and 4K RSA private key
decrypting data encrypted with EVP_PKEY_encrypt() and corresponding
public key. Keys generated using openssl CA shell script.
EVP_PKEY_decrypt() just returns -2 saying that this key is not
supported. BUT! RSA
HTTP-response like:
HTTP/1.1 200 Connection established
Then browser send initiate ssl handshake over this pure tcp-channel.
Your proxy get HTTP-request instead ssl-handshake and fail:
2572:error:1407609B:SSL routines:SSL23_GET_CLIENT_HELLO:https proxy
request:.ssls23_srvr.c:391
---
/ A
Hi!
Thankx for your advices. Finally, I got it working with
RSA_public_encrypt() and RSA_private_decrypt().
--
Alexey
sms stands for save my soul
__
OpenSSL Project http://www.openssl.org
User
welcome!
--
Thanks in advance,
Alexey
sms stands for save my soul
__
OpenSSL Project http://www.openssl.org
User Support Mailing Listopenssl-users@openssl.org
Au
l.org/docs/crypto/EVP_EncryptInit.html#CIPHER%20LISTING
They differ with suffix like _cbc, _ecb, _cfb, _ofb and etc.
What are meanings of these suffixes and use-cases?
Best regards,
Alexey Luchko.
--
Luch
sms stands for sa
s envelopedData and signed content as
enveloped data itself.
Thanks!
Alexey Svatseff.
(sorry for my english)
Hi all.
I'm trying to make openvpn tunnel using gost89 as cipher for traffic. For
this purpose I generated my CA, public/private keys for client and server,
and then trying to connect them all going ok:
Wed Jun 18 13:26:34 2008 us=231723 10.1.1.110:1194 VERIFY OK: depth=1,
(sorry for my english)
Hi all.
I'd like to test latest sources from cvs with russian gost algorithm, but I
cannot for example use openssl enc -gost89, programm tells me then, no such
parameter.
And another question: I'd like to test openvpn+openssl with russian cipher
algorithm to crypt traffic b
(sorry for my english)
Hi all.
I'd to try use openvpn+openssl+gost cipher, but I can't find any gost cipher
in openssl (openssl ciphers) and openvpn (openvpn --show-ciphers).
I dowloaded newest sources from cvs.
--
Software is like sex, it is better when it's free
Clear. Thanks.
PS yes, the first dump was made by dumpasn1 (P. Gutmann)
Alexey
---
Moscow Institute of Physics and Technology
www.mipt.ru
-Original Message-
From: [EMAIL PROTECTED]
[mailto:[EMAIL PROTECTED] On Behalf Of Dr. Stephen Henson
Sent: Friday, September 05, 2003 3:51 PM
To
Try this one
ASN1_UTCTIME_get
Hi,
I want to store certificates in database (Oracle) and I want
to have expiration time of certificates stored in DATE column, but I did
not find a function that converts ASN1_TIME to time_t or struct tm. Is
there such a function?
And I want to ask if the expira
code:
// prepare x509 content
FILE *fp = fopen("test.cer",
"wbr+");
// not null
PEM_write_X509(fp, x509); // <- access
violation (i'm using win2k pro)
fclose(fp);
could any body tell me the
reason?
thanks
wbr
There r no such a directory exists. I saw the selfsign.c in demos but it
throws an exception (access violation) in callback function when dumping to
console (PEM_write_X509 & X509_write_fp). whats the problem?
thanks in advance
> On Mon, Sep 23, 2002 at 03:19:29PM +0400, Alexey S. Polun
using openssl X509 api ?
mb any examples exist ?
thanks
I need openssl x509 & x509v3 functions manual. please help me. where I can find
subject ?
thank u
__
OpenSSL Project http://www.openssl.org
User Support Mailing List[EMAIL PROT
Hello
Could you tell me where I can find the x509 & x509v3 manual?
Thank you
wbr
__
OpenSSL Project http://www.openssl.org
User Support Mailing List[EMAIL PROTECTED]
Automate
Hi!
> Err start again :-)
Oops, sorry, I didn't see thread about it.
> Purpose checking is done automatically in the newer releases of OpenSSL
> as part of the client certificate verify process, including checking
>extendedKeyUsage.
>
> Several checks take place, currently documented in the x
Hi, All!
Suppose I have a SSL server and I want to check the purpose of
the client certificate, which means that I need to check the
enhancedKeyUsage contents. What I've done is enumerated the
X509 extensions by X509_get_ext_count() and X509_get_ext(),
found the enhancedKeyUsage by OID X509_EXT
On Tue, Oct 09, 2001 at 05:29:17PM +0800, wenwen-unitop wrote:
> when i compiled /openssl-0.9.6/demos/ssl/cli serv
> it just say:
> is there any library lost?
> cc -I/home/wenwen/openssl-0.9.6/include -o cli cli.o
>-L/home/wenwen/openssl-0.9.6/libssl.a -L/home/wenwen/openssl-0.9.6/li
h say that message has errors and do not say what errors are.
Maybe someone know what is going on?
--
Best regards,
Alexey mailto:[EMAIL PROTECTED]
__
OpenSSL Project
On Thu, Jan 18, 2001 at 04:02:42PM -0500, Peter Hall wrote:
> I'm looking at a demo in demos/ssl/serv.cpp which uses 2 functions called
> SSL_CTX_use_certificate_file and SSL_CTX_use_PrivateKey_file. The demos
> uses the same
> file name (foo-cert.pem). How can I get create one of these files.
>
Hi,
What encryption from OpenSSL could I use, if I need next thing:
I have text, I want to crypt it with key.
Then I want to decrypt it with this key.
What is the most powerful and fast such encryption in OpenSSL?
If possible, can
On Thu, Jan 11, 2001 at 01:45:11PM +0100, Lutz Jaenicke wrote:
> > green@pacific:~/SSL$ make
> > gcc -I/usr/local/ssl/include -o cli cli.cpp -L/usr/local/ssl/lib -lcrypto -lssl
> You did not use my sequence. Libraries are searched in the sequence given.
> It is thus important to keep -lssl -lcryp
On Thu, Jan 11, 2001 at 10:08:24AM +0100, Lutz Jaenicke wrote:
> On Thu, Jan 11, 2001 at 09:13:12AM +0200, Alexey Prohorenko wrote:
> > green@pacific:~/SSL$ make
> > g++ -I/usr/local/ssl/include -o cli cli.cpp -L/usr/local/ssl/lib/libssl.a
>/usr/local/ssl/lib/libcrypto.a
>
24 matches
Mail list logo
