On Mon, Oct 26, 2020 at 9:35 AM Jakob Bohm wrote:
> On 2020-10-24 16:09, Brett Stahlman wrote:
> > Jakob,
> > I don't really understand why the engine *needs* to do PSS. Neither of
> > the badssl certificates seem to use it for signatures. (I'm assuming the
> > fact that a cert was signed with RS
On 2020-10-24 16:09, Brett Stahlman wrote:
Jakob,
I don't really understand why the engine *needs* to do PSS. Neither of
the badssl certificates seem to use it for signatures. (I'm assuming the
fact that a cert was signed with RSA-PSS would show up in the Windows
certificate viewer...) If you
Btw, how do you build the CAPI engine in versions of openssl that don't
have the enable-capieng configure argument (e.g., 1.0.2u)? I tried
-D__COMPILE_CAPIENG, but e_capi.c isn't even being compiled.
Thanks,
Brett S.
On Fri, Oct 23, 2020 at 9:45 AM Matt Caswell wrote:
>
>
> On 23/10/2020 14:10,
Jakob,
I don't really understand why the engine *needs* to do PSS. Neither of the
badssl certificates seem to use it for signatures. (I'm assuming the fact
that a cert was signed with RSA-PSS would show up in the Windows
certificate viewer...) If you could give a short summary of the problem as
you
On 2020-10-23 15:45, Matt Caswell wrote:
On 23/10/2020 14:10, Brett Stahlman wrote:
It seems that the CAPI engine is breaking the server verification somehow.
Note that the only reason I'm using the ca-bundle.crt is that I couldn't
figure out how to get CAPI to load the Windows "ROOT" certifica
On 23/10/2020 14:10, Brett Stahlman wrote:
> It seems that the CAPI engine is breaking the server verification somehow.
> Note that the only reason I'm using the ca-bundle.crt is that I couldn't
> figure out how to get CAPI to load the Windows "ROOT" certificate
> store, which contains the requi
Hello,
I'm attempting to use the s_client command on Windows 10 to connect to a
secure server (client.badssl.com) that requires client authentication. When
I run the following command...
echo -e 'GET / HTTP/1.1\r\nHost: client.badssl.com\r\n\r\n' |
./dist/bin/openssl.exe s_client -ign_eof -verifyC
