I have to “manually” encode the OID and innerContextToken.
Best regards
Max
From: openssl-users on behalf of Matt
Caswell
Date: Friday, 5. November 2021 at 11:41
To: openssl-users@openssl.org
Subject: Re: ASN1 <-> DER encoding with application tag
On 04/11/2021 17:39, Max Larsson
Hi Russ,
I have the 126 bytes, but as described I omitted them, because they are in my
opinion not helpful
for my problem, and would only clutter the email. I should probably have
written some ellipses
to indicate it better.
best regards
Max Larsson
From: Russ Housley
Date: Thursday, 4
writing of the additional bytes after the OID gest encoded and
before
the innerToken is encoded:
….. 0x05 0x05 0x02 0x04 0x76 0xa0 0x74 ….(here are a lot of bytes omitted)
Best regards
Max
From: openssl-users on behalf of Matt
Caswell
Date: Thursday, 4. November 2021 at 17:14
To: openssl
,
is there a way to get decode with openssl anyway?
Max
From: Russ Housley
Date: Thursday, 4. November 2021 at 15:08
To: Max Larsson
Cc: openssl-users@openssl.org
Subject: Re: ASN1 <-> DER encoding with application tag
RFC 2743 shows this structure:
MechType ::= OBJECT IDEN
following DER encoded structure (the difference
marled in bold):
0x30 0x81 0x80 0x06 0x06 0x2b 0x06 0x01 0x05 0x05 0x02 0x04 0x76 0xa0 0x74
The google result, which I found seems to point into the direction to use
application tags to encode.
But I haven’t found any example or how to how to
Hi
We use version 0.9.8 before. there's a struct ASN1_HEADER
but it is disappeared in version1.0.0.
What could we use inplace of it?
thank you very much.
hi
I am looking for command ts in openssl
openssl 0.98k does not recognize this option described in the
documentation :-(
thanks for any tips
--
Jean-Max Reymond
Eruption de l'Etna: http://jmreymond.free.fr/Etn
-
With best regards, Max Terentiev.
Business Software Products.
AMS Development Team.
supp...@bspdev.com
- Original Message -
From: "Mounir IDRASSI"
To:
Sent: Monday, October 05, 2009 12:15 PM
Subject: Re: Compile dlls with Borland compiler OR avoid using VC 2008
Redist
Hi,
I suspect BC will have its own runtime libraries to provide similar
generic C runtime functionality.
Yes, but BC can link it inside output .dll.
MS VS should link to but I don't know what compiler option
must be set for it.
__
ions ?) to link all required libraries into .dlls ?
Thanx for help !
---
With best regards, Max Terentiev.
Business Software Products.
AMS Development Team.
supp...@bspdev.com
__
OpenSSL Project
I have a single file with
the code for OpenSSL and pthreads, both static and dynamic locks..
Shall we include it into OpenSSL ?
void OpenSSL_pthread_init( void );
.. that would make it more usable for the average developer! :D
Later,
Max
Sander Temme wrote:
On Nov 21, 2008, at 8:
s would be nice.. :D
I just installed the patched version - but no changes in the behavior.. I
will try to inspect the `disable_mutex_callbacks`.. but if that is the case,
how shall I fix it ???
Later,
Max
__
ock_callback() start
Nov 21 17:36:19 ncipher168 ocspd[26357]: _dyn_lock_callback() end
...
Therefore it seems that the callbacks are properly registered!
The problem is that they are not called by the nCipher driver - no sign
at all in the logs... :( How come they are not called ???
Later
properly,
I am trying to investigate further...
Anybody knows where can I find the patched OpenSSL version from nCipher ?
Later,
Max
P.S.: As this code is basically the same for every application, what about
integrating
a nice OPENSSL_init_pthread() function that will initiate all the static
today a forked daemon is more robust than a multi-threaded one.. :(
Thanks for the advice - I will now put the locks back in place and see if the
server does
not crash anymore... :D
Later,
Max
Przemek Michalski wrote:
Max,
Hi David,
that is really nice.. although.. after I gave it a try.
to do that by using pthreads ?
Ciao,
Max
Sander Temme wrote:
On Nov 19, 2008, at 11:24 PM, Max Pala wrote:
The software that I am writing is a multi-threaded OCSP responder.
Please make sure you initialize the engine correctly, and set up your
locking callbacks before you actually
efc in ?? ()
#29 0x0807eed8 in ?? ()
#30 0x08085558 in ?? ()
#31 0x0010 in ?? ()
#32 0x in ?? ()
Any Idea ???
Later,
Max
Sander Temme wrote:
On Nov 19, 2008, at 11:24 PM, Max Pala wrote:
The software that I am writing is a multi-threaded OCSP responder.
Please make sure you initia
Hello Sande,
The software that I am writing is a multi-threaded OCSP responder.
Sander Temme wrote:
What software are you running that makes he calls into OpenSSL?
--
Best Regards,
Massimiliano Pala
--o
Massim
tas[remember].inuse > 0' failed.
Anybody has experienced problems with this HSM on Linux + pThread ?
Cheers,
Max
--
Best Regards,
Massimiliano Pala
--o
Massimiliano Pala [OpenCA Project Manager] [EMAI
would be covered by that license.
As Bob points out you are safest if you pay your own lawyers to map
the minefield as it applies to your product.
- max
On Jan 10, 2008, at 1:25 PM, Bob Bell (rtbell) wrote:
Anil -
There are a lot of legal issues surrounding the use of Certicom
patented ECC
I'll give the patches a shot once I get my head above water. I've a
plane trip coming up and that sounds like a good time for it.
Thanks,
- max
On Oct 23, 2006, at 1:21 PM, Nils Larsch wrote:
Max Pritikin wrote:
(Hello, I'm asking again. Please let me know if you think this
(Hello, I'm asking again. Please let me know if you think this would
be more appropriately addressed to the openssl-dev list or something.)
In summary: Is it possible to use sha256 when generating an ecdsa
certificate?
Thanks,
- max
On Oct 19, 2006, at 10:52 AM, Max Pritikin
nd SHA-512." But I don't have access to the entire document
and don't see the 'NOTE' and thus could very well be wrong on this
point.
Any responses appreciated. Thanks,
- max
__
OpenSS
phor you could also just
think about the model for ssh... it is often valuable just to be able
to know you're communicating with the same person you communicated
with last time.
- max
On Oct 13, 2006, at 5:02 PM, Chong Peng wrote:
guys:
we all know that a ca-signed certific
need establish a SSL connection, send a
certificate, and them send the file request. The problem, is that I
don't know how to create the SSL connection and create/send the
certificate.
I read somewhere that I need first connect in the port 443. Is this right?
So, can anybody help me?
Thanks!!!
Max
Hello guys,
I'm stuck in defining qcStatements in certificates.
Does anyone know how to define it in openssl.conf ?
I will be very thankfull for any information.
Regards,
Max
__
OpenSSL Pr
de on each host ?
During selfsigned certificates creation, what Common Name should I
provide on each host ?
Should I use the same CA for both certificates ?
If someone could answer simply and clearly, it could be help
>
> That's odd. Does OpenSSL pass 'make test' OK on that platform?
>
No, in fact it doesn't. Sorry - I should have checked this before. It gets to 'test
BN_Kronecker' and fails with 'Legendre symbol computation failed'. I compiled it on a
Sun Enterprise 450 (SPARC) under Solaris 8 using the Su
b:a_verify.c:162:
I've found
references to this in the mailing list, but only for old versions of OpenSSL.
Any ideas how I can fix this?
Max
CainesIT Services, University of WolverhamptonWolverhampton, West
Midlands WV1 1SBTel: 01902 322245 Fax: 01902 322699
And so..., I sign "1"
in OpenSSL, then I verify it in Capicom, instead of "1" I
receive
??>?. Somebody
has prompted me, that OpenSSL signs the data as binary, and Capicom understands
only Unicode. Who can tell something clever in this
occasion?
Max
Suslov
---
-
Help me to understand please, that I do not so! Or, even better, allow to
look at working examples if those are available. I can send my scripts and
certificates if it is required.
Best regards,
Max Suslov.
__
Is the application in Java?
if so, Do you have all the kernel patches required by sun for java?
You may want to verify the version of java you are using.
-Original Message-
From: [EMAIL PROTECTED]
[mailto:[EMAIL PROTECTED]]On Behalf Of Ashwin C Uthappa
Sent: Monday, August 26, 2002 2:42
I too am interested in this subject. perhaps I do not want encryption
but I do want authenticated information through SSL. Is it possable to
have only the key passed via encryption. Then only useing hash methods
to hash the key + data transmitted and send the data unencrypted but
give it an a
Sorry to bother - I printed the error to a file as described in the faq and
finally get the following error:
1300:error::.\crypto\bio\b_sock.c:131:host=https
==>> in the source I found [he=BIO_gethostbyname(str);] returns zero, mean
lookup failed ?
However - still digging on...
Regard
Any hints where to find more information how to approach this or even a
speficic hint ?
Thanks for any time and help.
Regards
Max
__
OpenSSL Project http://www.openssl.org
User Support Mai
Yeah, me too, as far as a PalmOS port. The crypto libraries basically
work, though they're not optimized. SSL OTOH is a completey different
story.
Like you, I dont have a need for it anymore, and as such it has taken a
back burner.
- Max
On Thu, 11 Apr 2002, Steven Reddie wrote:
> I
moth that i'm sortof unsure how to approach.
- Max
At 07:20 am 11/28/2001, you wrote:
>On Sat, Nov 17, 2001 at 10:13:07AM +0200, Leendert Meyer wrote:
> > However, I will need to be able to use SSL on the PalmOS. Does anyone
> > know if I can use OpenSSL on the Palm or is there a
Richard Levitte - VMS Whacker ha scritto:
>
>
> Well, twofish was mentioned as well. Unfortunately, it isn't
> implemented in OpenSSL (yet). However, blowfish is another,
> and it is implemented in OpenSSL as well.
sorry for my silly questions,
but I really don't undertstand..idea is i
"RC4 is a trademark of RSA Security, so use
of this label should perhaps only be used with RSA Security's
permission.".
I need something really free!!!
o___
/\_ _| | Max Liccardo - Security Pianist Consultant
_\__`[___
o___
/\_ _| | Max Liccardo - Security Pianist Consultant
_\__`[___| [EMAIL PROTECTED] (at work)
] [ \, ][ ][[EMAIL PROTECTED] (at home,sweet home)
"..fatti non foste per viver come bruti,
t_cipher(benc,cipher,key,iv,1);
and
if ((benc=BIO_new(BIO_f_cipher())) == NULL);
cipher=EVP_get_cipherbyname(LN_idea_cfb64);
BIO_set_cipher(benc,cipher,key,iv,1);
but cipher is always NULL.
where am I wron
So far so good.
Are you running OSP to do this? Which cisco engineer were you working with?
The "> > >6d01h: SSL: process certificate" is when IOS attempts to respond
with its client certificate. I don't know openssl but aren't you trying to
_not_ request th
Hi all, I have some difficult to compile openssl on my Origin200 server
I use this operation sequence:
1) ./Configure irix-n64-cc
2) gmake
3) gmake rehash
4) gmake test
On this i obtain the following errors:
testing rsa conversions
p -> d
p -> p
d -> d
p -> d
d -> p
p -> p
./rsa_oaep_tes
Hubert Froehlich wrote:
> >
>
> Um, I am working on the same. The scripts mentioned above already include the
> 'msie_hack' option...
>
> When working on the Unix side all works fine. Just when trying them out with
> MSIE I got some error code like 0x80092004
>
> I'm familiar with Unix, Linux a
very much appreciated.
Regards,
Max
__
OpenSSL Project http://www.openssl.org
User Support Mailing List[EMAIL PROTECTED]
Automated List Manager [EMAIL PROTECTED]
45 matches
Mail list logo
