Re: [openssl-users] i2d_ d2i_ b2i_ i2b_ functions and EVP_PKEY

where we see it contains a pointer to one of the specific key types, such as rsa_st. rsa_st is defined in rsa.h, and if we look there we see that it contains all the RSA parameters, so it implicitly contains both the public and private key. Michael Wojcik Technology Specialist, Micro Focus   --B

Re: [openssl-users] What is the best practise for shutdown SSL connections?

LIENT then reuse this session, if it doesn't send "close_notify" alert? Or this session will be invalid?Try it, see what happens.  The client is certainly free to *try*to the reuse the session, worst-case the server will perform a fullhandshake anyway. Thank you for answers. I will t

Re: [openssl-users] How to retrieve the commonName / Alt-Name (DNS-Name) from a .crt file

) or SSL_set_verify(),  then in callback X509_STORE_CTX_get_current_cert() 2. SSL_get_peer_certificate() -- Best Regards, Serj Rakitov ___ openssl-users mailing list To unsubscribe: https://mta.openssl.org/mailman/listinfo/openssl-users

[openssl-users] SSL_ERROR_WANT_READ, SSL_ERROR_WANT_WRITE

then I must again call SSL_write() untill it returns with success? 3. Can be this situation: SSL_write() returns <=0 and then SSL_get_error() returns SSL_ERROR_WANT_WRITE? What to do in this case for non-blocking socket? -- Best Regards, Ser

Re: [openssl-users] SSL_ERROR_WANT_READ, SSL_ERROR_WANT_WRITE

Thanks, Graham. Sorry for too late answer )) Now i am testing... 21.02.2015, 14:42, "Graham Leggett" : > On 21 Feb 2015, at 12:58 PM, Serj Rakitov wrote: >>  I set socket to non-blocking mode. >> >>  1. If I do SSL_read() and get result <=

[openssl-users] How to make a rehandshake(renegotiation)?

//process SSL_do_handshake (WANT_READ/WANT_WRITE) How to make a rehandshake from server side? -- Best Regards, Serj Rakitov ___ openssl-users mailing list To unsubscribe: https://mta.openssl.org/mailman/listinfo/openssl-users

Re: [openssl-users] How to make a rehandshake(renegotiation)?

ke? Best Regards, Serj Rakitov ___ openssl-users mailing list To unsubscribe: https://mta.openssl.org/mailman/listinfo/openssl-users

Re: [openssl-users] SSL_ERROR_WANT_READ, SSL_ERROR_WANT_WRITE

ody help me? How to test these situations or how to perform a rehandshake? Best Regards, Serj Rakitov ___ openssl-users mailing list To unsubscribe: https://mta.openssl.org/mailman/listinfo/openssl-users

Re: [openssl-users] How to make a rehandshake(renegotiation)?

Nobody knows? Does OpenSSL support renegotiation? I will be very grateful for answers because there is no any info about this in the net. 09.03.2015, 00:36, "Serj Rakitov" : > Hello > > I want to test SSL_ERROR_WANT_READ/SSL_ERROR_WANT_WRITE. > I have client and ser

Re: [openssl-users] SSL_ERROR_WANT_READ, SSL_ERROR_WANT_WRITE

Nobody knows? 09.03.2015, 15:30, "Serj Rakitov" : >  I have to open discussion again. > >  I want to test situations when SSL_read WANT_WRITE and SSL_write WANT_READ. > But I can't do this. SSL_read never wants write and SSL_write never wants > read! > &

[openssl-users] Delay of email delivery for the list

Hello, I see some delay about 30-40 min for my emails. They arrive and I see them in the incoming messages in the list only after 30-40 min. And one email was delivered for 2 hours. Is it normal for the openssl-users@openssl.org? Some time ago I see an email with message: Welcome to the opens

Re: [openssl-users] SSL_ERROR_WANT_READ, SSL_ERROR_WANT_WRITE

Hi, Jakob. Thanks for reply. Now I have seen OpenSSL code and something clear for me. WANT_READ/WANT_WRITE it's just an implementation for "WOULDBLOCK": not fatal error for non-blocking IO. So, for example for socket and Windows it's just WSAEWOULDBLOCK returns by WSAGetLastError. Peforms by

Re: [openssl-users] How to make a rehandshake(renegotiation)?

10.03.2015, 21:40, "Salz, Rich" : > Yes. > You probably need more than that. :) Take a look at the apps/s_client and > look for the 'R' constant to see how to do client-initiated reneg. I have took a look at the apps/s_client. I see only several lines of code about renegotiation: //.

Re: [openssl-users] Delay of email delivery for the list

11.03.2015, 08:20, "Kurt Roeckx" : > The mta.opensslfoundation.net was only very temporary and should > not be used.  openssl-users@openssl.org works just fine and > doesn't have any delay for me. Ok. > You can always check the headers > why or where it has any delay. It's not so important for

Re: [openssl-users] How to make a rehandshake(renegotiation)?

11.03.2015, 20:38, "Salz, Rich" : > Many servers have disabled client-initiated renegotation. > > I thought you were testing your client/server. Yes I want to test my own client and server. I don't disable renegotation manually. I don't know how to do this. Maybe it disabled by default? Regard

Re: [openssl-users] Dynamic link openssl with Visual Studio

11.03.2015, 20:22, "Ken Goldman" : > I would like to use the Shining Light precompiled openssl binaries > within Visual Studio. > > I can dynamic link with gcc and the libraries in OpenSSL/lib/MinGW > > I can static link with VS and the libraries in OpenSSL/lib/VC/static > > When I dynamic link w

Re: [openssl-users] Dynamic link openssl with Visual Studio

11.03.2015, 20:22, "Ken Goldman" : > I would like to use the Shining Light precompiled openssl binaries > within Visual Studio. > > I can dynamic link with gcc and the libraries in OpenSSL/lib/MinGW > > I can static link with VS and the libraries in OpenSSL/lib/VC/static > > When I dynamic link wi

Re: [openssl-users] How to make a rehandshake(renegotiation)?

Hi, I managed to do a renegotiation. My mistake was that I start renegotiation when not all data were received or sended. Probably there was a situation when not all packets(records) were processed and i got a error: unexpected record or bad length. Really only one function SSL_renegotiate an