Hello All,
Does OpenSsl support TLS 1.1. Looking at the REAME for OpenSsl version 9.8d,
it doesn't look like. Reading RFC 4346 (TLS1.1) it looks like there are no
significant changes.
Any idea?
Thank you for your help.
Regards,
Prashant.
--
Hello All, Does OpenSsl has support for Kerberos Ciphers? Is ther any documentation or example how to use the Kerberos ciphers ? Thank you for your help. Regards, Prashant.
Yahoo! Mail
Bring photos to life! New PhotoMail makes sharing a breeze.
16 01 00 for a DTLS handshake is the right code 16, Content type, and it is a handshake DTLS version is 01 00 Thanks, Prashant.Eduardo Pérez Ureta <[EMAIL PROTECTED]> wrote: Maybe you can try:http://www.aet.tu-cottbus.de/rt2/Ticket/Display.html?id=1245http://bugs.debian.org/cgi-bin/bu
that fixed, I changed this definition so that it doesn't add the 1024 bytes if compression is disabled. So there's another 2048 bytes/connection.These changes are less important given your strategy. But I plan to implement both so that Idon't have to port to MatrixSSL. Thanks
ag
Martin,
When I was looking at this, I found that the OpenSsl code uses s3->rbuf and s3->wbuf as scratch buffer. So, what I found is that, once the handshake is complete I could free these buffers safely until we have to send/receive any data on that SSL session. I reallocate s3->rbuf and s3->wbuf
DTLS works fine in OpenSsl when you use socket interface. Look at the s_client and s_server program under apps/ directory. It has code to run the DTLS. You could base your implementation on that.
- Prashant.Manuel Schölling <[EMAIL PROTECTED]> wrote:
Hi everybody,I'm going to write a peer2peer-vp
Look under the documentation for BIO_s_mem, an example is given there.
char data[] = "Hello World"; BIO *mem; mem = BIO_new_mem_buf(data, -1);
Regards,
Prashant.Nadav Golombick <[EMAIL PROTECTED]> wrote:
Hi,
I was wondering if there is a way to set my own memory buffer for the use of BIO_re
You could either use memory BIO or bio-pair. Example for memory bio could be find in demos/state_machine. The best example for bio pair is the post fix Lutz Jaenicke postfix tls implementation.
- Prashant.Richard <[EMAIL PROTECTED]> wrote:
Hello,I am new to openssl. I am interested to learn how t
cswift is one of the engine (hardware accelerator) module supported by openssl. Did you call any engine API in your code?
- Prashant.vijay basav <[EMAIL PROTECTED]> wrote:
hi
i am working on vxworks using openssl-0.9.7e . SSL_read is giving me problems. when checked with error number it says c
Here are answer's to some of your questions:
1. OpenSsl supports the X509 v3 certificate format which is used by IPSEC. So certificates generated by OpenSsl can be used for IPSEC.
2. OpenSsl has support for cut and paste mechanism (you mean PKCS10/PKCS7!). Look at apps/req.c (generation of PKCS
Hello Edward,
Lutz Jaenicke postfix tls (pfixtls.c) explains BIO pair very well. As I understand the internal BIO is used by the SSL API's, that is when you do "SSL_write" [that is feeding the unecrypted data to the SSL engine], you read the encrypted data through the network bio. Similarly, you
Hello All,
I am trying to use ubsec hw accelerator with openssl and I get a DMA Error from the UBSEC when I try to run the function "ubsec_mod_exp". Any idea ? I am running this on a VXWORKS platform.
Any help is appreciated.
Thank you,
Prashant.
Do you Yahoo!?
Yahoo! Mail - Find what
I think I got the answer for my question from the following FAQ:
http://oss-institute.org/fips-faq.html#a10
Regards,
Prashant.Prashant Kumar <[EMAIL PROTECTED]> wrote:
Hello All,
http://www.linuxsecurity.com/content/view/115240/65/
The above news says that the library in version 0.9.7b of
Hello All,
http://www.linuxsecurity.com/content/view/115240/65/
The above news says that the library in version 0.9.7b of OpenSSL was validated--FIPS serves as validation only for encryption modules, not entire software packages.
Does this mean that OpenSsl has to get FIPS certification for
Look at demos/state_machine/state_machine.c and Lutz Jaenick's "pfixtls.c" http://www.aet.TU-Cottbus.DE/personen/jaenicke/. Both are great examples for use of memory BIO's and BIO pair.
Thanks,
Prashant.David Schwartz <[EMAIL PROTECTED]> wrote:
> I'm trying to implement an eap-tls server using op
requirements. Did anyone try to use openssl in such an environment ?. Is there any example ?
Thank you for your help.
Regards,
Prashant Kumar.__Do You Yahoo!?Tired of spam? Yahoo! Mail has the best spam protection around http://mail.yahoo.com
Title: RE: Elliptic curve in 9.7a
Hello Nils Larsch,
Thank you so much for your help. When will OpenSsl 9.8 be released ?
Thanks,
Prashant Kumar.
-Original Message-
From: Nils Larsch [mailto:[EMAIL PROTECTED]]
Sent: Wednesday, March 26, 2003 4:00 AM
To: [EMAIL PROTECTED
Title: Elliptic curve in 9.7a
Hello Group,
Do we support curves K-163 (Group 7) and B-283 (Group 8) in the Elliptic curve implementation
in 9.7a ? . Do we have any example program on how can we use it (I checked in the apps directory
and didn't find anything) ?. Also, is there any licensing/
Alex,
I guess B_GetKeyInfo(buffer, obj,KI_PKCS_RSAPrivateBER)
returns a ASN1 of PrivateKeyInfo PDU. You have to extract
RSAPrivateKey PDU from this PrivateKeyInfo PDU. Once you
get RSAPrivateKey PDU you can then use "SSL_CTX_use_PrivateKey_ASN1"
API to set the private key.
To do all these things
Hello Ganesh,
For Vxworks you should include .
Vxworks doesn't have a "times" function,
however, Vxworks has a "time" function.
Also, Vxworks has "random" and
"srandom" function.
About "Time_F" function in "apps" directory,
I have not ported this directory. I have
ported only the "ssl" and "cry
SL and CDSA" in "presentations" section.
Also I think they already provide an "Enhanced adaption layer
for the OpenSsl cryptographic plug-in". Look under
http://developer.intel.com/ial/security/download.htm
Regards,
Prashant Kumar.
-Original Message-
From: Mads [mailto
I saw a paper on Intel or IBM website where they have
explained few facts about integrating OpenSsl in CDSA.
Also I think some effort is in progress.
-Original Message-
From: raju [mailto:[EMAIL PROTECTED]]
Sent: Tuesday, November 20, 2001 7:06 AM
To: [EMAIL PROTECTED]
Cc: [EMAIL PROTECTE
ported to VxWorks?
Thanks for your reply. Did you create a customized/modified configure
script or did you basically do everything by hand?
- Alex
-Original Message-----
From: Prashant Kumar [mailto:[EMAIL PROTECTED]]
Sent: Friday, September 07, 2001 11:21 AM
To: [EMAIL PROTECTED]
Subject: R
OpenSsl should compile for Vxworks without any problems.
Start compiling. If you find any problems please feel
free to contact me. I have it ported to Vxworks.
Regards,
Prashant.
-Original Message-
From: Stagg, Alex [mailto:[EMAIL PROTECTED]]
Sent: Friday, September 07, 2001 9:52 AM
To:
Aslam,
Any success doing this. I'm thinking of using Openssl
for the same purpose. Please let me know.
Regards,
Prashant.
-Original Message-
From: Aslam [mailto:[EMAIL PROTECTED]]
Sent: Tuesday, May 08, 2001 11:41 AM
To: '[EMAIL PROTECTED]'
Subject: Getting actual blobs of ssl3 / tls1 m
Hello Group,
Did anyone try implementing PPP EAP-TLS protocol[RFC 2716] using
Openssl code.
Thanks a lot.
Regards,
Prashant.
__
OpenSSL Project http://www.openssl.org
User Support Mailing List
Raja,
My 2 cents, since you have not provided any "verify_callback"
function the best option for the flags in "SSL_CTX_set_verify"
would be "SSL_VERIFY_NONE"
Here is the explanation for SSL_VERIFY_NONE.
B the server will not send a client certificate request to the
client, so the client will no
Eric,
Thanks a lot for your help.
Prashant.
-Original Message-
From: Eric Rescorla [mailto:[EMAIL PROTECTED]]
Sent: Monday, August 13, 2001 11:06 AM
To: [EMAIL PROTECTED]
Subject: Re: Ssldump on Windows nt
"Prashant Kumar" <[EMAIL PROTECTED]> writes:
> Hell
Hello Group,
Can I install ssldump on Windows NT. The instruction for
installation says I need "libpcap" and I guess we can't
install "libpcap" on WindowsNT(I failed to).
Any help is appreciated.
Hello Group,
Did anyone try porting OpenSsl to Vxworks platform ?.
Any success :), jut to gain some confidence.
Regards,
Prashant.
__
OpenSSL Project http://www.openssl.org
User Support Mailing
30 matches
Mail list logo
