SMIME_read_PKCS7 fails with memory BIO but works with file BIO

1ySk95j5OsKK0COZYe8vzH8Cxasy/HRUsml0EnPdCcqRnErIURQ\n" "9TTgAN28f6po85zOkod4Ou63bEfqdjlLtvaX3gPvrU7h+eddxSNSSqqXqH3ayCDo\n" "zg=="; int main(void) { { /* This does not work */ PKCS7 *p7; BIO *bcont = NULL; BIO *signedEncryptedBio = BIO_new(BIO_s_mem());

Re: ssl programming reference

Brad Brock wrote: > Hi, I'am a newbie programmer. I want to learn how to > build an application that communicate over SSL. Can > anyone show me where to find the references? Thank you. Network Security with OpenSSL by John Viega, Matt Messier and Pravir Chandra, ISBN 059600270X

Re: is any documentation for programmers?

th images at http://en.wikipedia.org/wiki/Block_cipher_modes_of_operation -- Heikki Toivonen signature.asc Description: OpenPGP digital signature

Re: Phantom Domain Name Mismatch?

ed my code on "Network Security with OpenSSL" book samples, which first check dNSName but happily continue to check commonName if no match was found in dNSName. Perhaps an errata to the book would be in order? See page 136 (June 2002 First Edition). -- Heikki Toivonen signature.asc Description: OpenPGP digital signature

RE: Rand_status so slow on windows

nd RAND_event() return 1 if the PRNG has been seeded with enough data, 0 otherwise." Should I go file a bug on that? -- Heikki Toivonen signature.asc Description: OpenPGP digital signature

Re: Trusted CA pack

ip with Mozilla products. It's in a format that is not compatible with OpenSSL, but the CURL people have made a conversion tool and provide already converted Mozilla CA list. See http://curl.haxx.se/docs/caextract.html See Mozilla policy here: http://www.hecker.org/mozilla/ca-certificate-

Re: how to EVP_SignInit_ex() ?

hives (search) and general web searches help. There are also some tutorials/samples in the code. -- Heikki Toivonen signature.asc Description: OpenPGP digital signature

Re: PKCS12 client

david kine wrote: > How does one load verify locations into a SSL_CTX from > in-memory X509 certificates? I believe you are after X509_STORE_add_cert(). You can use SSL_CTX_get_cert_store() to get the store from an SSL_CTX. -- Heikki Toivonen signature.asc Description: OpenPGP d

Re: question about compiling in windows XP

d to run vcvars32.bat in the prompt before you can run the nmake command. -- Heikki Toivonen signature.asc Description: OpenPGP digital signature

How to verify when server's certificate issued by unknown authority?

. Assuming my approach above is correct, of course. -- Heikki Toivonen signature.asc Description: OpenPGP digital signature

How to verify when CA certificates in database?

far? Are there other ways of doing this? Any way to reuse the default verification routines if I do 2)? -- Heikki Toivonen signature.asc Description: OpenPGP digital signature

Re: Is it legal to distribute the client certificates from Netscape with a comme

e is also an already extracted list available for download. See http://curl.haxx.se/docs/caextract.html -- Heikki Toivonen signature.asc Description: OpenPGP digital signature

Sending through OpenSSL, reading data directly from socket, how to decrypt?

ms to take readbio and writebio - could I pass in a readbio that acts as a conduit for the data read by Twisted? -- Heikki Toivonen signature.asc Description: OpenPGP digital signature