X509_NAME_add_entry_by_txt: can not handle Email entry in Openssl 0.9.7d

2005-09-06 Thread Lincoln
u can shed light on this issue. Thanks, Dr. Lincoln -- test code --- /* * output is * Subject contains invalid field/value: * Email/[EMAIL PROTECTED] */ #include #include #include #include int main(){ X509_NAME *name = X509_NAM

Re: ASN1_OBJECT myth in X509_NAME_add_entry_xxx

2005-08-30 Thread Lincoln
n't identify it by myself.. --- "Dr. Stephen Henson" <[EMAIL PROTECTED]> wrote: > On Tue, Aug 30, 2005, Lincoln wrote: > > > Hi, > > Would any guru please take a look at this > following > > question? Thanks! > > Don't try to acc

ASN1_OBJECT myth in X509_NAME_add_entry_xxx

2005-08-30 Thread Lincoln
Hi, Would any guru please take a look at this following question? Thanks! Dr. Lincoln X509_NAME_add_entry_by_NID() adds a ASN1_NAME_ENTRY which contains a pointer to ASN1_OBJECT, among other things. Does any expert know why the ASN1_OBJECT referenced in ASN1_NAME_ENTRY has NULL for sn, ln

Re: Client authentication problem

2005-07-12 Thread Lincoln
Looks to me that client authentication failed. And this is most likely due to client cert processing on the server side: [notice] child pid 9192 exit signal Segmentation fault (11) The above indicates that. Make sure client cert processing is done correctly on the server side. If it is a progr

BER to DER conversion

2005-07-11 Thread Lincoln
Hello all, Does OpenSSL have a routine to convert BER encoded blob into DER encoded blob? I need this because I am integrating OpenSSL with a HSM which exports RSA public key to BER blob, but OpenSSL internal routines expect DER encoded blob. If you can point me to the right location,

Re: CRL Distribution Point

2004-12-21 Thread Lincoln
Peter, Thanks for sharing. However, I disagree on a few points. OpenSSL does have some CRL handling capability. Please refer to O'REILLY OpenSSL book as well as x509_verify_cert() source code. Lincoln --- Peter Sylvester <[EMAIL PROTECTED]> wrote: > > > > I am not s

Re: CRL Distribution Point

2004-12-21 Thread Lincoln
of overhead in terms of delay and processing. Some CRLs are very long (can go up to a few Mbytes of data), making downloading CRL per SSL connection unbearable. If you find contrary evidence, please share it... Lincoln --- Steve Larson <[EMAIL PROTECTED]> wrote: > I am wanting t

Re: CRL Distribution Point

2004-12-21 Thread Lincoln
verhead in terms of delay and processing. Some CRLs are very long (can go up to a few Mbytes of data), making downloading CRL per SSL connection unbearable. Therefore, I don't know whether Apache does this at all. If you have a different opinion, please share it. Best, Lincoln --- Steve

Certificate Distribution Point(CDP) handling in C

2004-12-19 Thread Lincoln
ciate your pointer! Lincoln __ Do you Yahoo!? Jazz up your holiday email with celebrity designs. Learn more. http://celebrity.mail.yahoo.com __ OpenSSL Pr

libfisdef.h missing

2001-04-02 Thread Tim Travis/City of Lincoln, I.S./402-441-7763
I am trying to build the openssl-0_9_6a-beta3. I have a VAX running vms 6.2 and Compaq C V6.2-003. I get the following error when compiling and cannot find the libfisdef.h in any directories. Can someone point me to this file?: $ CC/OBJECT=SYS$DISK:[-.VAX.OBJ.CRYPTO]DSO_VMS.OBJ SYS$DISK:[.DSO]ds