FILE,SSL_R_BAD_SSL_FILETYPE);
goto end;
}
<<<...non-pertinent code omitted>>>
}
Thanks!
Bill Rebey
__
OpenSSL Project
CTET STRING
Anybody know what's wrong and what I can do to fix it?
Thanks!
Bill Rebey
=== Confidentiality Statement ===
The information contained in this message and any attachments is
intended only for the use of the individual or entity to wh
HY it failed. Where
does it tell me what went wrong? Could they not agree on a cipher? Was a
certificate or key missing or something like that? Was something wrong with
authentication?
How do I know why the two sides didn't connect?
Thanks again for the help,
Bill Rebey
-Or
for me and my company.
Any suggestions?
-Original Message-
From: Dr S N Henson [mailto:[EMAIL PROTECTED]]
Sent: Thursday, March 01, 2001 6:43 PM
To: [EMAIL PROTECTED]
Subject:Re: MSIE Connectivity
Bill Rebey wrote:
>
>
> How is it supposed to work? My Web ser
t_accept_state and SSLv3_server_method()), and it's
trying to use anonymous SSL (DH, no certificates or private keys). The
cipher suite to use is specifically set via:
SSL_CTX_set_cipher_list (pctxSSLContext, "!DEFAULT:ADH-DES-CBC3-SHA");
Is this wrong? How should my server be set
to fail, and OpenSSL itself may be
performing flawlessly.
If anyone else can successfully complete the 'test.bat' diagnostics, I would
appreciate hearing about it an could really use any tidbits of info about
anything special required to mak
You just saved my career!
Next time you're near Columbus, OH, USA, look me up - I'll buy you all the
beer you can drink.
Thanks a million, Mr. Wallace! I've been trying to solve this problem for a
month and have been getting nowhere.
Bill Rebey
***NOTE: For everyone els
Chris,
Did you get my updated test code yesterday? Does it look like I've got all
the programming errors out of the test code itself?
__
OpenSSL Project http://www.openssl.org
User Support Mailin
est.bat' on Windows NT 4.0? Any ideas
what's wrong?
Thanks for the help,
Bill Rebey
__
OpenSSL Project http://www.openssl.org
User Support Mailing List[EMAIL PROTECTED]
Automated List Manager [EMAIL PROTECTED]
echo "rand ...params..." >> foo
echo "quit" >> foo
openssl < foo
but that doesn't work at all.
Is there any way I can get the PRNG seeded so that "req" will work?
Thanks
Bill Rebey
___
shi a couple weeks back.
Again, my non-authenticated SSL Server connections and even my Authenticated
SSL Client connections either don't leak or leak very, very, slowly. This
Authenticated mode leak is HUGE, though - on the order of 1MB per 100
connections!!!
Can
From: Harry W. Waddell [mailto:[EMAIL PROTECTED]]
Sent: Wednesday, June 28, 2000 4:56 PM
To: Bill Rebey
Subject:Re: Legality - just heated up
I would expect that 70K was just an opening bid. I don't know if you've
shipped products already, but if you haven'
s far more important
is that I avoid using anything that requires licensing, royalties, fees,
etc.
Is there a definitive source for this information somewhere?
Thanks for any help you can offer,
Bill Rebey
__
OpenS
d mail to that would be a more
appropriate or authoritative audience for such legal questions?
Thanks again,
Bill Rebey
-Original Message-
From: Bill Rebey
Sent: Wednesday, June 28, 2000 4:06 PM
To: [EMAIL PROTECTED]
Subject:Legality
Hi all,
Assuming I ever get OpenSSL
-Original Message-
From: Lenny Foner [mailto:[EMAIL PROTECTED]]
Sent: Tuesday, June 27, 2000 2:43 PM
To: Bill Rebey
Cc: [EMAIL PROTECTED]; [EMAIL PROTECTED]
Subject:Does anyone know how to fix Multithreading??
Date: Tue, 27 Jun 2000 13:47:25 -0400
From: Bil
Yea, that's the way I interpreted it, I just reiterated it unclearly.
That's the problem - I can't serialize the access to a single SSL - I need
two threads to access it, one blocking on an SSL_read and another issuing
SSL_write calls as data from an outside source becomes available for writing
ac
while I'm writing on another. I
can't very well single-thread the reads and writes.
Any other ideas?
Thanks again,
Bill Rebey
-Original Message-
From: Richard Levitte - VMS Whacker [mailto:[EMAIL PROTECTED]]
Sent: Tuesday, June 27, 2000 1:20 PM
To: [EMAIL PROTECTE
, you'll have more reading material than you know what to
do with.
Bill Rebey
-Original Message-
From: Douglas Wikström [mailto:[EMAIL PROTECTED]]
Sent: Monday, June 26, 2000 5:57 AM
To: [EMAIL PROTECTED]
Subject:Re: Cipher question...
Hello!
I know that a larg
same time
(one reading, one writing).
Does anyone know how I can fix the OpenSSL code so that this works? Does
anyone even know what things in the SSL are thread-Unsafe so that I might
know where to begin looking?
Bill
e random seed at all?).
Am I missing something?
Also, what is considered a "good" amount of seed data? I'm using 64 Bytes.
Is that a lot? Is 64KB more appropriate? Something in the middle, perhaps?
Thanks for all your help and patience, everyone, and for not throwing
tom
What gives?
-Original Message-
From: Gregory Stark [mailto:[EMAIL PROTECTED]]
Sent: Thursday, June 22, 2000 2:46 PM
To: Bill Rebey
Cc: Gregory Stark
Subject:Re: Cipher question...
Bill,
First of all, don't be discouraged; the problem of getting a good seed
for a ran
Sleep(random(2));
QueryPerformanceCounter (&val);
seed[c][ii] |= (unsigned )(val.LowPart & 0x01);
Sleep(random(2));
}
RAND_seed (seed, sizeof (seed));
-Original
side appear to generate a pretty good
mess of data that doesn't appear to offer up any sort of patterns or
consistency.
Thanks for the time and education!
Bill Rebey
-Original Message-
From: Michael Wojcik [mailto:[EMAIL PROTECTED]]
Sent: Wednesday, June 21, 2000 1:16 PM
To:
.(out to 256 bytes) a
sufficiently large and sufficiently "random value " with which to seed the
RNG? How could someone predict that?
Thanks for your time and advice,
Bill Rebey
-Original Message-
From: Goetz Babin-Ebell [mailto:[EMAIL PROTECTED]]
Sent: Tuesday, J
Start by running something like this before you do other SSL stuff:
time_t seed[64];
for (int ii = 0; ii < 64; ii++)
{
time_t t = time (NULL);
seed[ii] = t;
}
RAND_seed (
r: (null)
FncErr: (null)
RsnErr: (null)
I am calling:
SSL_load_error_strings();
ERR_load_ERR_strings();
At startup.
What on earth is going on?? Why might "SSL_CTX_load_verify_locations" fail
after a client certificate is rejected, and why doesn't the error system
repor
the above statements. I DO
> know exactly how FTP works, as I've written both Client and Server code
> before, so the parts above about how FTP works are indeed correct, but the
> interaction with SSL may be in question. I think it's right, though.
>
> I hope th
e indeed correct, but the
interaction with SSL may be in question. I think it's right, though.
I hope this helps a little, and if anyone can help me figure out what's up
with my SSL handshake trouble, I would appreciate it.
Bill Rebey
-Original Message-
From: Arun Venkataraman
t are the repercussions of doing this? What will go wrong?
Is there a list anywhere of exactly what things are and are not thread safe?
How is one to know?
What do I do to fix my SSL_read and SSL_write problem?
Thanks for the help!
Bill
29 matches
Mail list logo
