I am getting the below error message when i am try to READ the CRL content .
19104:error:0D0680A8:asn1 encoding routines:ASN1_CHECK_TLEN:wrong
tag:tasn_dec.c:1294:
19104:error:0D07803A:asn1 encoding routines:ASN1_ITEM_EX_D2I:nested asn1
error:tasn_dec.c:380:Type=X509_ALGOR
19104:error:0D08303A:a
I am using openssl 0.9.8g version .
i convert the PEM certificate file to X509 format and try to read the key
usage value .
Keyuage =lCertificate->ex_kusage ;
Some time the keyusage = 128
Some time Keyusage is 0 for the same certificate . why this problem occurs
...
--
View this message in con
I want to know what is ASN1_OCTET_STRING and how to convert that into c++
string /char *
--
View this message in context:
http://old.nabble.com/what-is--ASN1_OCTET_STRINGtp33545023p33545023.html
Sent from the OpenSSL - User mailing list archive at Nabble.com.
__
Jakob Bohm-7 wrote:
>
> On 10/4/2011 4:58 PM, brajan wrote:
>> hi
>> can any one tell me why the signature verification in openssl fail when
>> the
>> message is signed bu java IBM fips compliant.i am using openssl 0.9.8g in
>> power Pc. i am getting er
Jeffrey Walton-3 wrote:
>
> On Tue, Oct 4, 2011 at 10:58 AM, brajan wrote:
>>
>> hi
>> can any one tell me why the signature verification in openssl fail when
>> the
>> message is signed bu java IBM fips compliant.i am using openssl 0.9.8g i
My steps are
1. raw data eg.balamurugan
2. i am calculating hash for this data using sha256 which is 256 bit for
readable i convert this into (32 to 64 byte) hex string not hex represent.
eg hash string is a123sdf... which is 64 characters
3. now i am giving this 64 character string into
hi
can any one tell me why the signature verification in openssl fail when the
message is signed bu java IBM fips compliant.i am using openssl 0.9.8g in
power Pc. i am getting error in
if (((unsigned int)sig->digest->length != m_len) ||
(memcmp(m,sig->digest->data,m_len) != 0)) line of
hi
i installed the openssl-fips 1.2 in opensuse kernel 2.6.25.5-1.1-default
Opensuse version 11.1. i try to run the following code . i got the illegal
instruction ..
and i need to knoe i installed the fips 1.2 fully..
GDB out of my code
27 FIPS_mode_set(1);
(gdb)
31 s
hi i am using openssl 0.9.8g version to verify the Java signed message. while
verifing i got bad signature error how ever the same signature is verified
in the Java correctlu ... erro occur in
if (((unsigned int)sig->digest->length != m_len) ||
(memcmp(m,sig->digest->data,m_len) != 0))
hi can any one tell whats wrong i am doing in this code...
I sign the Message using Java IBMFIPS compliant the code to sign the message
is
//Signs the hash of each chunk and adds it to the Message Header
//data is 256Kb length
//Get private key function is created by me to read the DER key for
Can any one tell which API i need to use for the above Encryption method
according to RFC3447 to Sign a message with SHA256 algorithm..
--
View this message in context:
http://old.nabble.com/Does-Openssl-0.9.8g-Support-RSASSA-PKCSV1.5-with-EMSA-PKCSV1.5-tp32316532p32316532.html
Sent from the Op
can any one tell me whether openssl 0.9.8g supports RFC5280 or not
--
View this message in context:
http://old.nabble.com/Does-Openssl-0.9.8g-supports-RFC5280-tp32288662p32288662.html
Sent from the OpenSSL - User mailing list archive at Nabble.com.
__
hi i am using openssl 0.9.8g version ..
ASN1_item_verify ()
in this function Void* asn is used as ASN1_VALUE* asn. my complier show
error for that.. whether it is the reason for X509_verify(cert,cakey)
function fails .?
--
View this message in context:
http://old.nabble.com/openssl-0.9.8g-bug..
hi can any one tell me how to over that error i am validating the certificate
using
X509_verify_cert()
the out put of this is Signature verification error.. i go through the code
and found
ASN1_item_verify function is called where can i find this function c code
and how to over come the Verifica
Mayur Premi wrote:
>
> Hi ,
> I am using X509* ** pX = * PEM_read_X509*(FILE *fp, X509 **x,
> pem_password_cb *cb, void *u);
>
> to get a X509 certificate structure from PEM format File.
>
> My File(fp) looks like below:
>
> -BEGIN CERTIFICATE-
> MIIEQzCCAyugAwIBAgIPAMdMAQEALqZRDlT
can any one tell me how to remove the crl revocation check and Expiry check.
i want to validate the signature of the certificate alone no CRL or Expiry
check.
any flag i need to set
--
View this message in context:
http://old.nabble.com/how-to-disable-theCRL-check-and-time-check-in-X509_verify
hi
i am having 10 Different CA Root certificates and each having depth of 3
intermediate Certificate in a Folder.
i want to verify the Signature of the incoming certificate which P7b file
which can have certificates need to validate (3 different certificates to
validate) or one certificate nee
17 matches
Mail list logo
