For anyone running across this, we also were affected by this issue and
worked with the Asterisk community to produce the patch referenced here:
https://issues.asterisk.org/jira/browse/ASTERISK-28576
This will return nonzero values to prevent the hard assert, for anyone that
is using packaged ve
Thank you very much Matt!
You solved my problem.
Best regards,
Josh
On Fri, Apr 28, 2017 at 11:04 AM, Matt Caswell wrote:
>
>
> On 28/04/17 08:07, Josh Shamir wrote:
> > Dear all,
> >
> > I am trying DH key derivation by using OpenSSL commands. However, I go
iffie-Hellman routines:PKEY_DH_DERIVE:keys
not set:dh_pmeth.c:436:"
Please find below the logs of the whole execution.
Thanks in advance.
Josh
$openssl dhparam -out dhparams.pem -2 1024
Generating DH parameters, 1024 bit long safe prime, generator 2
This is going to take a
I tried playing around with simple encryption using DES. I can't explain
why the cli utility and the library interface seem to be producing
different output.
Detailed on Stackoverflow here:
https://stackoverflow.com/questions/26986381/can-someone-explain-the-difference-in-openssl-cli-and-c-des-ou
You can use
PEM_write_bio_X509 or PEM_write_X509 to save X509 into a FILE.
You can use PEM_read to read this PEM file when you need it.
Thanks! A couple of questions: what is the difference between
PEM_write_bio_X509, PEM_write_X509 and PEM_AUX_write_X509 (the latter is
what I intended to us
I have a very simple query: as a result of SSL/TLS negotiation I know I
could retrieve a pointer to the remote peer x509 structure, possibly via
"SSL_get_peer_certificate".
What I would like to do is this: 1) get that remote certificate stored
in a file in a suitable format, so that I could fu
= PKCS7_dup(pkcs7); (I simply duplicate the value back to same
pointer)
2) Generate key pair (new keys)
3) X509_set_pubkey
4) PEM_write_bio_PKCS7 (Create cert chain from PKCS value)
The duplication is even done before any certificate key change.
I fail to understand, why is that so.
Thanks,
Josh
On Tue
7". this
stands for X509_V_ERR_CERT_SIGNATURE_FAILURE
Is there anything I am doing wrong in this flow? Or can anybody comment on
the approach I am using for the key size upgrade.
Please let me know.
Thanks,
Josh
Hi All,
I am using this function to create a key for password encryption.
I have a similar application running on Windows which uses
Rfc2898DeriveBytes class to generate the key.
The problem I am facing here is the difference between the keys generated
using Windows and OpenSSL.
It happens only wh
the root and intermediate CA certs to openssl to
validate the chain? I have attempted to concatinate the needed certs in a
file and present that with the -CAfile option, to no avail. More details
are presented below.
Thanks,
-Josh
CONNECTED(0003)
---
Certificate chain
0 s:/C=US/ST
Thanks for your answer.
What do you mean by man pages for the OpenSSL libraries?
Is it necessary to buy the openSSL book to understand correctly?
Hi Driss,
The OpenSSL book will make things monumentally easier. There are a number
of things you need to do to create a secure service, beyond e
Thanks Bear, that did the trick!
On Mon, 18 Feb 2008, Bear Giles wrote:
Have you checked the conf file for the openssl ca? I haven't looked at it in
a long time, but I think you can specify whether an element is required or
optional in it.
__
Howdy Folks,
I am trying to pretend to be a CA with OpenSSL. I have done this before and
generated certificates to use with private keys on Apache and IMAPs. However,
this time around, I need to pretend to be a CA that signs Tomcat certificates.
There is a minor problem. When I generate a
I would like to know if it is possible to generate a certificate in which I can
change the certificate bit eg. Make a certificate which are 40 bits, 128 bits
(which I can do) or 256 bits which is what I would like to. I also know how to
make a private key with different bits so you don't need to
bump than moving from a to b. Thanks.
,
Josh.
> -Original Message-
> From: [EMAIL PROTECTED]
> [mailto:[EMAIL PROTECTED] On Behalf Of Marek Marcola
> Sent: Monday, May 15, 2006 11:13 AM
> To: openssl-users@openssl.org
> Subject: Re: OpenSSL 0.9.8b build error
>
>
this? Any suggestions on what's
wrong? Thanks in advance.
,
Josh.
Here are the steps
I'm taking to build:
./Configure hpux-ia64-cc --openssldir=/home/hp/lib/opensslDist threads
shared make make
test make install
Here is the error
I'm getting in make inst
Title: Message
I
tried configuring with hpux64-ia64-cc and was able to build as a shared
library. Thanks.
,
Josh.
-Original Message-From:
[EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] On
Behalf Of prakash babuSent: Wednesday, November 09, 2005 8:08
AMTo: openssl-users
[openssl] Error 2 make[1]: Leaving directory
`/home/snow/jfenlason/hp/openssl-0.9.8a/apps' make: ***
[build_apps] Error 1
I'm building with
gcc 3.3.1 and gnu make 3.79.1.
Any thoughts on what
is wrong? Thanks in advance.
,
Josh.
Title: Message
I'm trying to build
OpenSSL 0.9.8a on Solaris 8 and I'm running into problems. Any pointers
would be greatly appreciated.
Here is my build
process:
./config
--openssldir=/home/snow/jfenlason/solaris/lib/opensslSharedDist threads
sharedmake
Then I get the
following error
series, or perhaps 0.9.7, or go earlier.
Note if you have a problem getting Crypt::SSLeay to compile with
an earlier version, you can get earlier versions of Crypt::SSLeay
at backpan here:
http://backpan.cpan.org/modules/by-authors/id/C/CH/CHAMAS/
Regards,
Josh
open/close/read/write functions for it? Such heavy
machinery for so trivial a task?
Josh
__
Do you Yahoo!?
Yahoo! Search - Find what youre looking for faster
http://search.yahoo.com
__
OpenS
-D_LARGEFILE_SOURCE
-D_FILE_OFFSET_BITS=64 -Ae -O
-DVERSION=\"0.51\" -DXS_VERSION=\"0.51\" +z -I/opt/perl5/lib/5.6.1/PA-RISC1.1/CORE
SSLeay.c
Regards,
Josh
____
Josh Chamas, Founder p
7;ve checked my
ntohs and htons...
thanks again, josh.
On Thu, 22 Feb 2001 12:10:16 -0500 Greg Stark <[EMAIL PROTECTED]>
wrote:
> I don't think you need to allocate memory for server_key; BN_new() should do
> that for you and the rest of the BN_*() routines will allocate memory as
&
once for the
client; it works fine on the client, but not on the server (the code is
essentially the same for both of them).
Am I passing the correct parameters to DH_generate_parameters? Any
ideas?
josh.
---
Josh Howlett, Network Supervisor,
Networking and Digital Communicat
ly want to know that?)
josh
25 matches
Mail list logo
