Users,
An update here: See that we have OPENSSL_RAND_SEED_OS defined on our VxWorks
based system. Would it be a trusted entropy source ? The default for VxWorks
seems to be OPENSSL_RAND_SEED_NONE.
Thanks,
Prithvi
From: Prithvi Raj R (Nokia)
Sent: Tuesday, April 30, 2024 12:47 AM
To: openssl
array,top & dmax values , ..as this ret
variable isn't the part of RSA structure (yet) when the bn_mod_exp is
called.
Checkout this function "rsa_ossl_public_decrypt" for more details.
Hope that clarifies the scenario .
Please let me know if you have any questions.
Thanks,
Pru
Hello all,
We use a hardware accelerator to calculate BIGNUM rr = a^p mod m .(
bn_mod_exp). I am trying to rewrite that logic for openssl 1.1.1. Code
snippet of custom bn_mod_exp function:
--
if(rr->d)
{
OPENSSL_free(rr->d);
}
rr->d = ( BN_ULONG * )( malloc( m->top * sizeo
Method.bn_mod_exp = Intoto_DSA_mod_exp;
DSA_set_default_method(&Intoto_DSA_Method);
return;
}
--
Do you suggest any modifications, If any ??
Thanks,
Prudvi.
On Thu, Dec 17, 2020 at 4:07 PM Tomas Mraz wrote:
> On Thu, 2020-12-17 at 15:16 +0530, prudvi raj wrote:
> > Hi,
>
Hi,
I need to set custom accelerated functions for bn_mod_exp methods in
openssl 1.1.1, while upgrading for openssl 1.0.2. Here's the code snippet
() :
--
static DH_METHOD Intoto_DH_Method;
static RSA_METHOD Intoto_RSA_Method;
static DSA_METHOD Intoto_DSA_Method;
void updatePublic
Hi,
I am trying to write replacement ASN1 macros for i2d/d2i functions in
openssl 1.1.1
Previously:
typedef struct pkcs7_issuer_and_subject_st
{
X509_NAME *issuer; /* Certificate Issuer's name */
X509_NAME *subject; /* Certificate's subject name */
} PKCS7_ISSUER_AND_SUBJEC
Hi,
We are upgrading openssl library of our Embedded systems(Networking)
codebase which runs on multiple platforms(Linux, Qnx & GHS) , to version
1.1.1g . (currently using 1.0.2.k)
With Openssl 1.1.1g ,the CHANGES doc specifies that "QNX support has been
removed" , but nowhere there's a mention o
Hi,
we are upgrading our codebase to openssl 1.1.1g from openssl 1.0.2k
Previously, all the ctx objects are allocated memory using "calloc"
typedef struct CryptWrapMDContext_t
{
#ifdef OPENSSL
EVP_MD_CTX evpMDCtx;
..
struct CryptWrapMDContext_t *pNext;
}
Allocation : return ((CryptW
Hi,
I couldn't find where this macro is #defined , previously in 1.0.2 it was
defined in opensslconf.h .
So , i am getting this error during compilation
: openssl/crypto/x509/x509_def.c:17:12: error: 'OPENSSLDIR' undeclared
(first use in this function) .
This error is resolved if OPENSSLDIR is
sl-linux-gnuspe-ar
ARFLAGS = r
CC =
/opt/toolchains/adtn-6/sysroots/x86_64-fslsdk-linux/usr/bin/ppce500v2-fsl-linux-gnuspe/powerpc-fsl-linux-gnuspe-gcc
CFLAGS = -O3
CPPDEFINES =
CPPFLAGS=
CPPINCLUDES =
CROSS_COMPILE =
/opt/toolc
Hi there,
I got this error during compilation , in file b_addr.c :
In function 'BIO_lookup_ex':
/b_addr.c:748:9: error: unknown type name 'in_addr_t'
I see that "in_addr_t" is defined in "netinet/in.h" & "arpa/inet.h" in
toolchain (typedef uint32_t in_addr_t;).
i have even tried to #include<> the
Hi,
During compilation of openssl 1.1.1g , i am seeing this error :
openssl/crypto/ec/ecp_nistz256_table.c:31: error: expected ‘=’, ‘,’, ‘;’,
‘asm’ or ‘__attribute__’ before ‘ecp_nistz256_precomputed’
options used : ./Configure no-threads no-dso no-shared no-zlib no-asm
no-engine no-bf no-camelli
hey
> may very well have affected diverse macros.
>
> Cheers,
> Richard
>
> On Thu, 23 Jul 2020 21:39:45 +0200,
> prudvi raj wrote:
> > Hi,
> >
> > We are upgrading our code base to openssl 1.1.1g from 1.0.2k.
> > During Compilation i am seeing this erro
Hi,
We are upgrading our code base to openssl 1.1.1g from 1.0.2k.
During Compilation i am seeing this error :
In file included from
/openssl/include/internal/sockets.h:67:0,
from /openssl/crypto/bio/bio_local.h:11,
from /openssl/crypto/bio/bss_mem.c:12:
/opt/toolc
" showed OPENSSLDIR as "/usr/local/ssl" , which
is default . I couldn't find where this is #define 'ed.
May I know , where it's defined in openssl 1.1.1g or how this error can be
resolved. ?
Thanks,
-Prud
On Fri, Jul 17, 2020 at 2:32 PM Richard Levitte
While upgrading to openssl 1.1.1 from 1.0.2k .
I came across this code snippet :
if (rsa->flags & RSA_FLAG_SIGN_VER)
return rsa->meth->rsa_sign (type, m, lLen, sigret, siglen, rsa);
>From Docs :
Enhance RSA_METHOD structure. Now there are two extra methods, rsa_sign
and rsa_verify. Whe
Hello,
How do i generate "opensslconf.h" in openssl 1.1.1g?
>From docs, i assume it is created after we give "./Configure
gcc".
I observe that "opensslconf.h" is created only on giving "make" after
./Configure... But this additionally created .d & .o files in crypto
folders.
For openssl1.0.2 ,
Hi All,
we are upgrading our codebase to 1.1.1 from 1.0.2k.Here's a code snippet
causing error :
ext = X509_get_ext(X509, n);
data = ext->value->data;
How do i get the data value from X509_EXTENSION object.
since forward declarations are not allowed (compiler error) & i couldn't
find a suitabl
I'm having an issue with s_time and s_server using the latest OpenSSL
(1.1.1-dev) and tls1_3.
When I use tls1_2 connections are established and data is transferred.
However, when I use tls1_3 data is not transferred (connections are
established).
Below are the commands I use for s_time and s_
Hi
Thank you so much for your reply
Can you please let me know how can I set time out as a whole. I think you
are mentioning about SSL_CTX_Set_timeout function. If it is so then I have
set the time out using this function, and sadly I didn't get the expected
result.
Thanks,
Raj
Rajmoh
Hi All
Is there any method to set time our for SSL _read function.
As from the Open SSL document SSL_read will not return if there is no data
to read from the socket
Thanks,
Raj
Rajmohan SK
ack to the browser
if(GetChunkedSize(pcBuff) == 0) // This function checks whether the last
characters = \n\r and if found it retrieves the value
break;
} while(true);
Thanks,
Raj
Rajmohan SK
,
Raj
On Mon, Sep 13, 2010 at 3:22 PM, David Schwartz wrote:
> On 9/12/2010 11:38 PM, Raj Singh wrote:
>
> issuer_pubkey_len = i2d_PUBKEY(pubKey, NULL);
>> issuer_pubkey = malloc(issuer_pubkey_len);
>> i2d_PUBKEY(pubKey, &issuer_pubkey);
>> memory_dump
code as expected.
How come pubkey in a buffer can be different each time in my application ?
Is this some -lcrypto linking problem ?
I have also debugged for memory corruption. It is not present.
Please provide some pointers.
Thanks for the help in advance.
Best Regards,
Raj
the data in 1 second
interval. I am not sure about how to achieve this using OpenSSL API's.
Please let know is this the right approach to do it in SSL commuincation and
also How to set the time out along with a recieve request
Thanks,
Raj
Rajmohan SK
- Original Message -
From: &q
o
it.
Thanks,
Raj
Rajmohan SK
Hi All
Can anybody tell me the function for loading a certificate file (from my
local hdd) to X509 object
Thanks,
Raj
Rajmohan SK
Hi All
Can anybody tell me how to create a Digital certificate and its key from an
application,
VC++ for Windows
Thanks,
Raj
Rajmohan SK
instruct me as well
what went wrong in my application.
Thanks,
Raj
Rajmohan SK
- Original Message -
From: "David Schwartz"
To:
Sent: Thursday, August 19, 2010 5:51 AM
Subject: RE: Man in the middle proxy - Not working
Raj wrote:
I have tried one more method to rea
most a few seconds), and if one doesn't
a person at a browser usually doesn't want to wait anyway,
this can be a good simple compromise.
Could you send me some code snippet using 'bio' in SSL, I have seen using
'bio' is some sample applications instead of Sockets
(Serverssl,pcData, strlen(pcData));
SSL_accept(Serverssl);
do
{
dwReadDataLen = SSL_read(Serverssl,pBuff,iBufferSize);
SSL_write(SourceSsl,pBuff,dwReadDataLen);
cout << "Read buffer \n&
Hi
Can you send me some code snippet which shows how to commutate with
webserver and read the content data
Thanks,
Raj
Rajmohan SK
- Original Message -
From: "Dave Thompson"
To:
Sent: Friday, August 06, 2010 2:19 AM
Subject: RE: Man in the middle proxy - Not worki
e server
FYI
pcPort = 443
pcTargetURL = L"www.facebook.com";
pcData = "GET https://www.facebook.com HTTP/1.0\r\n\r\n"
Thanks, Raj Rajmohan SK
- Original Message -
From: "Dave Thompson"
To:
Sent: Thursday, August 05, 2010 7:48 AM
Subje
Hi
recv function is returning 0
Thanks, Raj Rajmohan SK
- Original Message -
From: "David Schwartz"
To:
Sent: Thursday, August 05, 2010 6:05 AM
Subject: RE: Man in the middle proxy - Not working
Raj wrote:
Thanks for all the response
1. I was able
g the data from the socket using
'recv' function. Can anybody tell me what went wrong
Thanks,
Raj
Rajmohan SK
- Original Message -
From: "David Schwartz"
To:
Sent: Wednesday, July 28, 2010 1:07 AM
Subject: RE: Man in the middle proxy - Not working
Rene Hollan:
VC++ 9.0 in Windows-Xp SP2
Thanks,
Raj
Rajmohan SK
Hi
No I am not using any kind of proxy application. Actually I want to
build a proxy application like squid
Thanks,
Raj
Rajmohan SK
- Original Message -
From: "Luis Daniel Lucio Quiroz"
To:
Sent: Friday, July 30, 2010 10:26 AM
Subject: Re: Proxy for content filtering
Hi All
I want to build a proxy server, which acts as man in the middle proxy. The main
intention of application is to do content filtering, whether it is an http or
https request. I want to block some specified URL. Can anybody tell me what is
the best approach of doing this
Thanks,
Raj
Hi All
Thank you so much for all the response.
I have one more doubt. If we do normal proxying on https connection, is
it possible to read the https content data, at least the URL
Thanks, Raj Rajmohan SK
- Original Message -
From: "David Schwartz"
To:
Sent: Wedne
on. What could be reasons for failure
Platforms I am using are :
MS Windows XP service pack 2
MS Visual Studio 2008 , VC++
Thanks,
Raj
Rajmohan SK
Hi,
Wanted a clarification on OpenSSL 0.9.8l ( CVE-2009-3555 - TLS / SSLv3
Renegotiating vulnerability) . When I execute the following
./openssl s_client -connect www.testapp.com:8090
--- [snipped... openssl output]
HEAD / HTTP/1.0
R
RENEGOTIATING
The below output is shown
HTTP/1.1 200
key pair
Hi Raj:
On June 4, 2009 12:58:02 pm Raj wrote:
> Hello Experts,
>
> I request your expert opinion in generating a PKCS#10 CSR;
>
> I have generated my RSA 1024 private public key pair in the HSM. The HSM
> exposes the keys as handles.
>
First question: Do you have OpenS
keys generated with various attributes; I
want to raise a CSR of this key pair which are referred by their handles.
Please advice how i can do this with OpenSSL.
Thanks
Raj
I think we are sailing in the same boat. I hit into exactly the same
problem.if you try compiling without disabling rc4. You will not get
those linking errors. But if we want to exclude all patented
algorithms, then we need to look for specific build releases without
these algorithms.
On 6/16/08,
mbols starting
> with MDC2 and etc...
>
> Cheers,
> --
> Mounir IDRASSI
> IDRIX
> http://www.idrix.fr
>
> On Mon, June 16, 2008 3:55 pm, bagavathy raj wrote:
>> Hi,
>>
>> I have openssl dlls(i.e.libeay32.dll, ssleay32.dll). I need to know if
>> these
Hi,
I have openssl dlls(i.e.libeay32.dll, ssleay32.dll). I need to know if these
libaries are using any of the patented algorithms like IDEA, RC4, RC5,MDC2
etc. Can you please let me know if there is any way to find out this?
Any help would be highly appreciated.
Thanks in adavance,
Bagavathy
wrote:
> raj H wrote:
>
> > Thanks Marek for your comments!
> >
> >
>
> [snip]
>
> I am sorry these questions are really vague and not of challenge for the
> > technical personals. But I believe these are the questions any solution
> > developer or op
on 04/03/2008 04:18:42 AM:
>
> > Anybody any comments?
>
> > On Tue, Apr 1, 2008 at 11:56 PM, raj H <[EMAIL PROTECTED]> wrote:
> > Hi Experts,
> >
> > OpenSSL 9.8b. We are facing some performance issues with it. I
> heard that
> > doing
Anybody any comments?
On Tue, Apr 1, 2008 at 11:56 PM, raj H <[EMAIL PROTECTED]> wrote:
> Hi Experts,
>
> OpenSSL 9.8b. We are facing some performance issues with it. I
> heard that doing session reuse or using some other ciphers can help improve
> the performan
TLS_DH_RSA_WITH_AES_128_CBC_SHA
TLS_DHE_RSA_WITH_AES_128_CBC_SHA
TLS_RSA_WITH_AES_256_CBC_SHA
TLS_DH_RSA_WITH_AES_256_CBC_SHA
TLS_DHE_RSA_WITH_AES_256_CBC_SHA
Thanks for your help!
Raj
regards,
Amit
On 6/9/07, Allen Cbhen <[EMAIL PROTECTED]> wrote:
raj pansuria 写道:
> helo i m using fedora core 6
>
> i got the following error
>
> helo my dynamic lib file is stored
> at /usr/src/lib/qt-3.3/lib/lhmail.so and
> it required support for libssl.so and libssl.so
helo i m using fedora core 6
i got the following error
helo my dynamic lib file is stored
at /usr/src/lib/qt-3.3/lib/lhmail.so and
it required support for libssl.so and libssl.so is in /usr/lib
but when i run my application
i got the following strange errors
../../liblhmail.so: undefined refere
Hello,
Could some one explain what the following error means and possible solution?
OpenSSL error detected in sslEndpoint::accept. Reason: error:1408B074:SSL
routines:SSL3_GET_CLIENT_KEY_EXCHANGE:bad protocol version number
Thank you,
Raj Pannala
[EMAIL PROTECTED
Both my IRIX on O2 and Linux on PII took one look at the virus,
yawned, and continued on their normal course. :-)
-- Raju
> "Jon" == Jon Earle <[EMAIL PROTECTED]> writes:
>> If you get this email from this guy DO NOT open it, my
>> macafee's virus scanner freaked out saying it was a
doesn't exist, or is in a very preliminary
development stage.
Please correct me if I'm wrong.
Regards,
-- Raju
>>>>> "Ben" == Ben Laurie <[EMAIL PROTECTED]> writes:
Ben> Raj Mathur wrote:
>> Hi,
>>
>> I looked for this
55 matches
Mail list logo
