Frederick wrote:
>
> CRYPTO_THREAD_write_lock(rand_meth_lock);
> CRYPTO_THREAD_write_lock(rand_engine_lock);
This is what's causing the segfault in libpthread.so
I can only imagine that the same thread is trying to re-lock a single-lock
mutex. So my code should be something like
> I'm going to keep at this until every process (including ssh-keygen) is
> using my custom engine for random numbers.
Now every process that links with 'libcrypto.so' is segfaulting in
libpthread-2.28.so. Here's the error:
openssl[1744]: segfault at
ime_for_entire_process )
{
first_time_for_entire_process = 0;
Do_Whatever_Needs_Done_For_TPM2();
}
/* The rest of the function goes here */
}
I'm testing it now but it still seems that something isn't right.
I'm going to keep at this until every process (including ssh-keygen) is
using my custom engine for random numbers.
Hi All,
I have few queries on how to implement custom engine ECDH ec set_group
method and it's return value. Any inputs are highly appreciated.
While setting engine group,currently always default group is set.
int EC_KEY_set_group(EC_KEY *key, const EC_GROUP *group)
{
if (key-
Hi all,
I'm developing a custom Engine in order to have a SSL client dual
authentication connection.
When I try to connect, I got:
(...)
SSL_connect:SSLv3 flush data
SSL_connect:error in SSLv3 read finished A
error:260C0065:engine routines:ENGINE_get_pkey_meth:unimplemented publi
On Wednesday, December 5, 2012, Ashok C wrote:
> Hi,
> Our current SSL server loads plain-text private keys using
the SSL_CTX_use_PrivateKey_file() method. We are moving from this strategy
to use custom encrypted private keys using the TPM concept. For this, we
have an engine implemented. Now the
exponent and modulus are put in the EVP_PKEY).
From: Jeffrey Walton
To: openssl-users@openssl.org
Sent: Friday, December 7, 2012 4:52 PM
Subject: Re: How to over-ride SSL_CTX_use_PrivateKey_file() behavior with
custom engine
On Fri, Dec 7, 2012 at 5:05 AM, LN wrote:
>
> ...
On Fri, Dec 7, 2012 at 5:05 AM, LN wrote:
>
> ...
>
>> MS CAPI has an option to mark a private key as "exportable" when you
>> create or install it, which means that the private key can then be read
>> anyway, but I don't know if that feature is used by the OpenSSL "CAPI
>> Engine". It is almost
On 12/07/2012 11:05 AM, LN wrote:
> I have a feeling it does so because I tried to save that returned
> EVP_PKEY to a PEM file with PEM_write_bio_PrivateKey and then to load it
> back from the same file with PEM_read_bio_PrivateKey.
> Saving worked, but loading failed (with some decoding error
ile encrypted
with a password, then keeping it in the windows store, if I want to pass it to
OpenSSL (through boost::asio::ssl) :)
From: Jakob Bohm
To: openssl-users@openssl.org
Sent: Thursday, December 6, 2012 12:23 PM
Subject: Re: How to over-ride SSL_CTX_u
On 12/6/2012 9:13 AM, LN wrote:
Hi,
Somehow related to private keys but about loading them with CAPI
engine... Does someone know if the ENGINE_load_private_key() for CAPI
engine returns the PUBLIC KEY ?
I have a feeling it does so because I tried to save that returned
EVP_PKEY to a PEM file wit
.
PEM_write_bio_PUBKEY and PEM_read_bio_PUBKEY worked with the returned EVP_PKEY.
Thanks!
From: Ashok C
To: openssl-users@openssl.org
Sent: Thursday, December 6, 2012 7:03 AM
Subject: Re: How to over-ride SSL_CTX_use_PrivateKey_file() behavior with
custom engine
Thanks Steve and Kent for the pointers.
Makes things clear for now.
On Thu, Dec 6, 2012 at 4:22 AM, Dr. Stephen Henson wrote:
> On Wed, Dec 05, 2012, Ashok C wrote:
>
> > Hi,
> >
> > Our current SSL server loads plain-text private keys using the
> > SSL_CTX_use_PrivateKey_file()
> > method. We ar
On Wed, Dec 05, 2012, Ashok C wrote:
> Hi,
>
> Our current SSL server loads plain-text private keys using the
> SSL_CTX_use_PrivateKey_file()
> method. We are moving from this strategy to use custom encrypted private
> keys using the TPM concept. For this, we have an engine implemented. Now
> the
Hi Ashok,
On Wed, Dec 5, 2012 at 12:29 AM, Ashok C wrote:
> Hi,
>
> Our current SSL server loads plain-text private keys using the
> SSL_CTX_use_PrivateKey_file() method. We are moving from this strategy to
> use custom encrypted private keys using the TPM concept. For this, we have
> an engine i
Thank you very much!
>
> In message <001101ca72e0$8a6fbd60$9f4f38...@com> on Tue, 1 Dec 2009
> 15:46:43 -0800, Scott Neugroschl said:
>
> redfloyd> I'm trying to build a custom ENGINE, and the docs are fairly
> sketchy as to
> redfloyd> how to do it.
>
In message <001101ca72e0$8a6fbd60$9f4f38...@com> on Tue, 1 Dec 2009 15:46:43
-0800, Scott Neugroschl said:
redfloyd> I'm trying to build a custom ENGINE, and the docs are fairly sketchy
as to
redfloyd> how to do it.
redfloyd>
redfloyd> It doesn't have to be dynamic
I'm trying to build a custom ENGINE, and the docs are fairly sketchy as to
how to do it.
It doesn't have to be dynamic -- my application will have the code to build
the ENGINE and register it.
Are there any good pointers on building an ENGINE?
Scott Neugroschl
XYPRO
Thanks, will try it out as soon as I can.
Regards,
Jun Han
> Date: Thu, 26 Nov 2009 13:24:29 +0100
> From: st...@openssl.org
> To: openssl-users@openssl.org
> Subject: Re: Adding a custom engine to OpenSSL
>
> On Thu, Nov 26, 2009, Loke Jun Han wrote:
>
> >
>
Yup.
> From: open...@morethan.org
> To: openssl-users@openssl.org
> Subject: Re: Adding a custom engine to OpenSSL
> Date: Thu, 26 Nov 2009 05:21:35 -0600
>
> On Thu November 26 2009, Loke Jun Han wrote:
> >
> > Hi,
> >
> >Is there any
On Thu, Nov 26, 2009, Loke Jun Han wrote:
>
> Hi,
>
>Is there anyway to for openSSL to automatically load a specific engine
> when the command line program is executed?
>
Yes, you specify details in the configuration file openssl.cnf, for the syntax
see:
http://www.openssl.org/docs/a
On Thu November 26 2009, Loke Jun Han wrote:
>
> Hi,
>
>Is there anyway to for openSSL to automatically load a specific engine
> when the command line program is executed?
>
Like one of the engines in the list from:
openssl engine
?
Mike
> Thanks,
>
> Jun Han
>
Hi,
Is there anyway to for openSSL to automatically load a specific engine
when the command line program is executed?
Thanks,
Jun Han
_
Windows 7: Find the right PC for you. Learn
Dr. Stephen Henson" <[EMAIL PROTECTED]>
To:
Sent: Sunday, April 30, 2006 3:27 PM
Subject: Re: Custom Engine
> On Sun, Apr 30, 2006, Dan M wrote:
>
>> Hi,
>>
>> Does anyone know if it is possible to dynamically add an engine and set
>> it
>> as the default
o the CryptoAPI?
>
> - Original Message -
> From: "Dr. Stephen Henson" <[EMAIL PROTECTED]>
> To:
> Sent: Sunday, April 30, 2006 3:27 PM
> Subject: Re: Custom Engine
>
>
> > On Sun, Apr 30, 2006, Dan M wrote:
> >
> >> Hi,
> &g
What does Firefox use for SSL? Is it a custom implementation, or does it
use something similar to the CryptoAPI?
- Original Message -
From: "Dr. Stephen Henson" <[EMAIL PROTECTED]>
To:
Sent: Sunday, April 30, 2006 3:27 PM
Subject: Re: Custom Engine
On Sun, Apr
On Sun, Apr 30, 2006, Dan M wrote:
> Hi,
>
> Does anyone know if it is possible to dynamically add an engine and set it
> as the default engine for all programs? For example, if I had a hardware
> accelerator which wasn't part of the OpenSSL's engine list, and wanted to
> use it as the defaul
Hi,
Does anyone know if it is possible to dynamically add an engine and set it
as the default engine for all programs? For example, if I had a hardware
accelerator which wasn't part of the OpenSSL's engine list, and wanted to
use it as the default engine for Firefox, could that be done? If s
Hello!
We implement custom engine registering some NIDs via OBJ_create(). We
have problems using this engine in openssl commands calling
OBJ_cleanup() before apps_shutdown() such as req, ca, x509. It causes a
segfault inside EVP_cleanup() function.
Now we use 20041207 snapshot.
--
SY, Dmitry
29 matches
Mail list logo
