The tarball doesn't appear to be corrupted for me, what errors are you getting?Under Redhat EL4 and EL5 VMs, tar zxf openssl-0.9.8q.tar.gz, works perfectly fine for me. Original Message From: Brent Evans To: openssl-users@openssl.orgSent: Fri, Dec 3, 2010, 8:48 AMSubject: opensll-0.9.8q.tar
perimental "ECCdraft" ciphersuites) and to OpenSSL 1.0.0 through 1.0.0d."Unfortunately, we cannot upgrade to the 1.0.0 series until the new FIPS module is released, since 1.0.0 doesn't compile with the current FIPS module.Thanks!James
g OpenSSL 1.0.0 with FIPS, I'm assuming they've either modified the FIPS module to be compatible with OpenSSL 1.0.0, they've obtained their own module by other means or some other method.Any information on this would
I completely understand and appreciate your quick response :) For the time
being, we'll stick with using the latest version of the 0.9.X series of OpenSSL.
Thanks again,
James
> Original Message
>From: Steve Marquess
>To: openssl-users@openssl.org
>Sent: Thu, Jul 2
> For things that the peer support forum and the existing documentation
don't cover, you have the source code, which is definitive.
The source code can tell you what it DOES do - but the cost of
understanding that can be very high in some cases, and the problem
domain of OpenSSL almost guarant
> the 'many eyes make all bugs shallow' views
You don't believe that, do you?
The number of counter-examples of long-standing bugs in widely available
and active open-source systems should be large enough to call it now.
Especially in subtle, complex systems where there is no documentation of
I recently upgraded our application to OpenSSL 1.0.1d with FIPS compiled in but
disabled, which has always been the case in the past. Our application runs in a
browser using Apache 2.2.23 and mod_ssl which is compiled against OpenSSL.
Testing has revealed that HTTP requests work fine, however, H
> Original Message
>From: "James"
>To: openssl-users@openssl.org
>Sent: Wed, Feb 6, 2013, 2:50 PM
>Subject: Issue with 1.0.1d with Apache 2.2.23
>
>I recently upgraded our application to OpenSSL 1.0.1d with FIPS compiled in
>but disabled, which has alw
> Original Message
>From: "James"
>To: openssl-users@openssl.org
>Cc: openssl-users@openssl.org
>Sent: Wed, Feb 6, 2013, 3:51 PM
>Subject: Re: Issue with 1.0.1d with Apache 2.2.23
>
>> Original Message
>>From: "James"
>
> Original Message
>From: Bruce Cran
>To: openssl-users@openssl.org
>Cc: "James"
>Sent: Thu, Feb 7, 2013, 9:48 AM
>Subject: Re: Issue with 1.0.1d with Apache 2.2.23
>
>On 07/02/2013 14:36, James wrote:
>>
>> Just an update, using a SS
ere another API/functions I should
be using? Are there hooks for being able to influence the messages between
server hello and server hello done?
or is there a patch... that already adds this?
Many thanks
James
The certificates are attached below.The use case is client A only has ta_primary_cert.pem and client B only has ta_secondary_cert.pemI’m trying to build a chain that the server can use (in the server hello) so that both client A and client B can successfully connect.Since openssl verify -trusted ta
ssl-users
> wrote:
>
> From: James <mailto:openssl-us...@natsuki.co.uk>
> To: mailto:openssl-users@openssl.org
> Subject: Re: Certificate verification with cross signed CAs
> Message-ID: <mailto:c457519e-e386-4df8-84ec-9efb7a0f9...@natsuki.co.uk>
> Content-Type: t
Hi,
Do you use DTLS ?
it is secure mode of UDP transfer. If you are not using DTLS then you are
not vulnerable
regards,
James
On Mon, Jun 9, 2014 at 6:43 PM, Jaya Nageswar
wrote:
> Hi All,
>
> We are currently using openssl 0.9.8 h version in one of our components. I
> would like
Hi,
Alternatively you can use the wireshark or tcpudmp to capture the packet
and decode the SSL - Client Hello and Sever Hello
That also may help to identify which protocol and cipher we use
regards,
James Arivazhagan Ponnusamy
On Sat, Nov 22, 2014 at 7:12 AM, Chris Bare wrote:
> Tha
((szData[3] == 0 && szData[4] < 5)
|| (szData[9] == szData[1])))
{
// SSLv3
nRet = 1;
}
}
}
return nRet;
}
On Sat, Apr 4, 2015 at 5:10 AM, James Cloos wrote:
> >>>>> "JR" == Joris Van Remoorte
Hi,
Can you try this option
SSL_CTX_set_options(m_SslCtx, SSL_OP_NO_SSLv2|SSL_OP_NO_SSLv3);
instead of disabling using the cipher list
regards,
James Arivazhagan
On Tue, Apr 7, 2015 at 5:41 AM, David Rueter wrote:
> I would like to disable SSL3 (to prevent POODLE attacks), but I wo
in a position to use this
API.
May be you can try with the latest version of openssl with the POODLE fix.
regards,
James
On Tue, Apr 7, 2015 at 8:14 AM, Viktor Dukhovni
wrote:
> On Mon, Apr 06, 2015 at 05:11:22PM -0700, David Rueter wrote:
>
> > I would like to disable SSL3 (to pr
Hi there,
I would like to know whether OpenSSL supports TLS 1.3, if supported from
which version of OpenSSL the implementation started.
regards,
James Arivazhagan Ponnusamy
___
openssl-users mailing list
To unsubscribe: https://mta.openssl.org/mailman
the LD_LIBRARY_PATH,
may result in compromising the security of the keys.
Does any of you faced this problem and if you could share the solution it
would be helpful.
regards,
James Arivazhagan Ponnusamy
___
openssl-users mailing list
To unsubscribe
some commonly used
strings and kept in their DB, using this only they give the original string.
That is why we need to use a salt string along with your original string.
regards,
James
On Tue, Apr 5, 2016 at 11:44 AM, Sugumar wrote:
> Thanks for all the information provided. Really its v
Hi,
I always use like this
Hash ( salt + password )
You can use like this also
Hash ( hash(salt) + password )
regards,
James
On Tue, Apr 5, 2016 at 1:52 PM, Sugumar wrote:
> Hello,
>
> Ya you are correct James.
> But my doubt is what is the best method to hash the password securely
Hi there,
In the below link I could see TLS 1.3 support will be added in future
releases
https://www.openssl.org/policies/roadmap.html
I think the support is not yet added. From when it will be added
regards,
James Arivazhagan Ponnusamy
--
openssl-users mailing list
To unsubscribe: https
I have done this multiple years in a row with the exact same process but now
I get the following error when I try to create my SSL:
openssl pkcs12 -export -chain -CAfile cachain.crt -out my.domain.com.p12
-inkey my.domain.com.key -in MY.DOMAIN.COM.crt
Error unable to get local issuer certificate g
> I have done this multiple years in a row with the exact same process but
> now I get the following error when I try to create my SSL:
>
> openssl pkcs12 -export -chain -CAfile cachain.crt -out my.domain.com.p12
> -inkey my.domain.com.key -in MY.DOMAIN.COM.crt
> Error unable to get local issuer ce
error_unknown_issuer)
I have always used the -chain and -CAfile options together when creating
p12's.
On Sat, Apr 23, 2011 at 12:32 PM, Crypto Sal wrote:
> On 04/21/2011 06:51 PM, James Chase wrote:
>
> I have done this multiple years in a row with the exact same process but
> now
req -verify -in www.example.com.csr -key www.example.com.key
verify OK
-BEGIN CERTIFICATE REQUEST-
CERTIFICATE DATA HERE
-END CERTIFICATE REQUEST-
On Sat, Apr 23, 2011 at 4:41 PM, James Chase wrote:
> I am using the same system -- I have tried with last years chain file as
> well. The onl
dea what that could be at this point -- I have never had so much trouble
with an SSL certificate and am not an expert by any means.
Anyone have any thoughts? I called NS earlier in this process and they said
"not our problem" but perhaps I will try again.
On Mon, Apr 25, 2011 at 11:01
>
>
> openssl verify -CAfile chain.crt my.cert.crt
>
> IF you have installed some 'common' or 'standard' CAs in your
> system's default truststore -- or if you're using a packaged
> build that does so for you -- turn that off to make sure it
> doesn't silently 'fill in' certs for you, something li
A/L=A City/streetAddress=One Park St/O=A
Company International Ltd/OU=Book
Sales/OU=Secure Link EV SSL/CN=www.example.com
i:/C=US/O=Network Solutions L.L.C./CN=Network Solutions EV SSL CA
---
On Mon, Apr 25, 2011 at 6:16 PM, Rob Stradling wrote:
> On Monday 25 Apr 2011 20:07:03 James Cha
IEWcl
DSpoJSSy8ieH7U4/kuZE79tAWQw5EvgfyL6fpMLHvNT63G6bW7ekRuSEjA0njqpC
y/Bbi7gDW2FzQ8Y0gMyYKtHVTBFz7vyr2hwB37bUWq009kMRVUhhHYpF6fAnByZC
phBXxfqQaC1XmE7tnyt8QLI2NBXDpDTTMtaEcU0VKnsb6X0p+u1r6S+/I2pjan9m
G0pID0nsP9iH2xyG+8F+Fxcxt7ve0T2YGYfgMg==
-END CERTIFICATE-
On Tue, Apr 26, 2011 at 8:19 AM, James
nt an hour and a half on the phone
with NetSol telling them their was something wrong with their files and they
just kept saying it was my fault and they will bill me $120/hour to fix it.
> > On Tue, Apr 26, 2011 at 8:19 AM, James Chase
> wrote:
> > > Well my results are qui
>
>
> I got the the correct certificate chain from my Windows 7 box. Microsoft
> tends to update its trusted CA certificates store more quickly and regularly
> than Mozilla or Linux distros: the latest update was last month on March
> 23rd 2011.
> It is sad that even Network Solutions guys are not
now how" :-)
Best wishes
James
James Berry
Chief Technical Officer
Advanced Health & Care
Unit 4 Eurogate Business Park, Ashford, Kent TN24 8SB
m: +44 (0) 7768 021031 t: +44 (0) 1233 722700 f: +44 (0) 1233 722701
www.advancedcomputersoftware.com/ahc<http://www.
7;t find the right magic
> cms -engine pkcs11 -sign -in sign.txt -signer
> 8320eb4fa0f91a25b9febcbe47845ba168055622 -keyform engine -out signout.txt
> -outform DER
Can anyone help please?
Best wishes
James
Advanced Health and Care Limited part of Advanced Computer Software Grou
Steve, I'm sorry but I don't understand can you be a bit more explicit?
Best wishes
James
-Original Message-
From: owner-openssl-us...@openssl.org [mailto:owner-openssl-us...@openssl.org]
On Behalf Of Dr. Stephen Henson
Sent: 06 July 2011 20:26
To: openssl-users@openssl.org
S
rypt could fail?
Regards,
James
__
OpenSSL Project http://www.openssl.org
User Support Mailing Listopenssl-users@openssl.org
Automated List Manager majord...@openssl.org
I recently had a timeout issue with a service provider we connect to
over HTTPS. I found downgrading to OpenSSL 1.0.0 solved the problem.
I'm not sure how to determine if it's a bug, an Arch Linux package
issue, or a problem with the service providers server?
I tested using Python and Ruby (multi
On Wed, Mar 28, 2012 at 10:16 AM, Dr. Stephen Henson wrote:
> On Wed, Mar 28, 2012, James Earl wrote:
>
>> I recently had a timeout issue with a service provider we connect to
>> over HTTPS. I found downgrading to OpenSSL 1.0.0 solved the problem.
>> I'm not sure h
this list can say "Yes, the
RAND_Poll CryptoAPI calls work on Windows-7", this will be my next
step.
Thanks,
James
On Sun, Nov 8, 2009 at 6:36 AM, sandeep kiran p wrote:
>>RAND_poll runs very quickly with a near-empty heap.
> Do you mean that the calls
> to Heap32First,
l
ripped out of rand_win.c that I could pass on to any OpenSSL
developer/contributor.
Thanks,
James
my debugging output:
stoptime: 851485984
Got heaplist_first.
heap1st
tickcount: 851624250
Exiting RAND_poll
On Wed, Nov 11,
I've confirmed my linear performance conjecture w/r/t heap objects.
Click here to see pretty pictures graphing my results:
http://thenewjamesbaker.blogspot.com/2009/11/performance-of-heap32next-on-64-bit.html
On Thu, Nov 12, 2009 at 11:50 AM, James Baker wrote:
> Punchline: The time ta
> Ger Hobbelt wrote:
> Odd question maybe, but does the API call slowdown too when traversing
> other heaps (which carry fewer items)?
Yes. This surprised me, but Heap32Next takes the same amount of time
to execute when traversing the 2nd heaplist (which has 15 items) as it
does the 1st heaplist
r.o)
ld: symbol(s) not found
collect2: ld returned 1 exit status
make: *** [smtpd] Error 1
make: *** [update] Error 1
I've installed OpenSSL 0.9.8n using:
./config --prefix=/usr threads shared
The machine is a Mac Mini running O
ke its been like that for a very long time.
Note sure the LPdir stuff is used any more either is it?
(I'm trying to build openssl with a custom build system, BTW. Yes I know
its not supported)
James
Why does E_EXE contain dhparam and E_OBJ contain dhparam.o, but E_SRC
does not contain dhparam.c?
(OpenSSL 1.0.0 fwiw)
__
OpenSSL Project http://www.openssl.org
User Support Mailing List
cate an OpenSSL implementation that has been wrapped
as a free-threaded COM service, you might find things easier if you
don't know how to write such glue. You could try looking in Mono's
runtime, too, which I suspect delegates to
u could also try this: http://openssl-net.sourceforge.net/
I have no idea how well it works - I just stumbled across it.
James
__
OpenSSL Project http://www.openssl.org
User Support Mai
I tried building the sources (openssl-0.9.7m, openssl-0.9.8g,
openssl-0.9.8h) with 2008 express and failed every time with the same
error.
cl /Fotmp32dll\cversion.obj -Iinc32 -Itmp32dll /MD /W3 /WX /
Ox /O2 /Ob2
/Gs0 /GF /Gy /nologo -DOPENSSL_SYSNAME_WIN32 -DWIN32_LEAN_AND_MEAN -
Duh. I see now you were showing your path... Thanks again.
James
--Original Message--
From: James Owen
To: openssl-users@openssl.org
ReplyTo: [EMAIL PROTECTED]
Subject: Re: build error vsc++express 2008 win32 openssl
Sent: Sep 11, 2008 09:56
That did it... Though the file was in
That did it... Though the file was in /crypto/perlasm
Thanks a lot!
James
James Owen
-Original Message-
From: Thomas Jansen <[EMAIL PROTECTED]>
Date: Thu, 11 Sep 2008 13:21:02
To:
Subject: Re: build error vsc++express 2008 win32 openssl
James Owen wrote:
>
>
>
>
g":MAILTO:openssl-users@openssl.org
ORGANIZER;CN="James McGovern":MAILTO:ja...@architectbook.com
LOCATION:The Hartford\, Tower Building: Atrium Conference Room
DTEND;TZID="(GMT-05.00) Eastern Time (US & Canada)":20090210T19
DESCRIPTION:\NThe Open Web Application Sec
Hi,
I'm trying to use the openssl toolkit to decrypt a message that was encryted
using an RSA public key. I have the RSA private key and thus has generated
to the public key. so I have both. The string with the encrytped message is
held in a file called "q2.enc":
a7jjYdmTJVFm9Lok2AHKEdBllkG+Lf0Ibi
n C.
I'm attaching the extracted code, in case anyone wants to look at it. It's
500 lines including comments, but you can see e.g. just the error-handling
in try_SSL_read() by searching for "sub try_SSL_read". The full program is
available upon request.
Thanks a lot for an
s
behavior ring any bells? This is all on Linux 3.1.10 (openSUSE).
SSL_read(), SSL_write(), and SSL_shutdown() are each handled with a similar
block.
That's one of several questions I have. A more general question is: Where
can I find descriptions of all return codes when using non-blocking I/O?
Thanks for any help!
Cheers,
James
s all very welcome.
Thanks!
James
Key
referen
ced in function main
sign.exe : fatal error LNK1120: 11 unresolved externals
Thank you
From
James Burton
ble loss of data in conversion but found none of them
in code called up to this point.
Any help here would be greatly appreciated.
James
*
Compiled curl 7.27.0 as instructed in the docs with the following options
mode=static VC=10 WITH_SSL=dll WITH_ZLIB=static USE_IDN=no
ENABLE_WINSSL=no MA
lse experience these?
Build machine: Windows 7 Enterprise 64 bit, SP 1, Core i7 3930
Visual Studio 2010 Professional SP 1
perl Configure no-idea no-mdc2 no-rc5 VC-WIN64A
call ms\do_win64a
nmake -f ms\ntdll.mak
nmake -f ms\ntdll.mak test
James
On 28 September 2012 19:00, Dr. Stephen Henson wrote:
>
hanks again,
James
On 1 October 2012 13:55, Dr. Stephen Henson wrote:
> On Mon, Oct 01, 2012, James Swift wrote:
>
>> > Try running the OpenSSL tests using: nmake -f ms\ntdll.mak test
>>
>>
>> rsa_test
>> PKCS #1 v1.5 encryption/decryption ok
>> OAEP dec
I am trying add certificatePolicies in C code and I got this Error on
"certificatePolicies = 2.2.2.2"
** sign1.c:163 Error creating X509 extension object
5432:error:22097088:X509 V3 routines:DO_EXT_NCONF:no config database:.\crypto\x5
09v3\v3_conf.c:156:
5432:error:22098080:X509 V3 routines:X509
in switch blocks.
All comments welcome. I'd feel more comfortable if someone who knows
better could verify it. Anything missing? If it's accurate, I'm
happy to transfer it to Patrick's wiki.
Cheers,
James
On Fri, Feb 1, 2013 at 9:29 PM, Patrick Pelletier
wrote:
Not clear if you need to learn HTTP, but a quick tutorial is at
http://www.jmarshall.com/easy/http/ . It covers the requirements of
writing compliant clients and servers.
James
On Fri, May 17, 2013 at 11:34 PM, Indtiny s wrote:
> Hi Dave,
> I do not need to handle all of HTTP stuffs ,
heers,
James
On Wed, Sep 18, 2013 at 4:44 AM, Indtiny s wrote:
> Hi,
> I want to use a openssl api and use that as http client .
> currently I am using the c-curl lib with opebssl to do this .
>
> and I am running a Nginx server with openssl to support server funs.
>
> I want t
ocket
switch on its error code, then do the appropriate next operation (which for
SSL_ERROR_WANT_READ or SSL_ERROR_WANT_WRITE is just a repeat of its
previous operation).
Good luck,
James
On Thu, Sep 19, 2013 at 2:02 AM, Krzysztof Kwiatkowski wrote:
> Hi,
>
> I'm a bit confused
Hi everyone,
I'm hitting a "unable to get local issuer certificate" error on a specific
SSL certificate, and I was wondering how I can best debug this? It's via
NXLog which uses OpenSSL so a bit disconnected from the underlying library
at the moment, and I'm not too familar with OpenSSL.
I've exp
non-leaf certs (here you don’t really) add -showcerts .
>
>
> ** **
>
> Note the sumologic leaf cert has Subject CN sumologic.com, but
> SubjectAlternativeNames correctly
>
> specifying other names including collectors.sumologic.com. EV certs
> aren’t allowed to use wildcard names.***
On 3 September 2022 19:26:50 Shawn Heisey via openssl-users
wrote:
On 9/2/22 21:42, Shawn Heisey via openssl-users wrote:
Other bare metal systems and their results with the same PEM file:
Verifies on Proxmox (the one running the VM) with openssl 1.1.1n
Verifies on Ubuntu 22.04 with opens
On 3 September 2022 19:26:50 Shawn Heisey via openssl-users
wrote:
On 9/2/22 21:42, Shawn Heisey via openssl-users wrote:
Other bare metal systems and their results with the same PEM file:
Verifies on Proxmox (the one running the VM) with openssl 1.1.1n
Verifies on Ubuntu 22.04 with ope
penssl.org, seems to work as normal.
-James M
rmat was it sent you? Do you want just the bytes of the public
EC point?
-James M
ed rootb.pem -untrusted ca.pem -untrusted alt_ca.pem
server.pem (FAIL: error 20 at 1 depth lookup: unable to get local issuer
certificate)
Is there a mechanism to support both ca.pem and alt_ca.pem without knowing
which root the client has?
Many thanks
James
I am getting this error from an openssl-1.0.1g file when trying to make
php-5.4.23
/usr/bin/ld: /opt/openssl-1.0.1g/lib/libcrypto.a(cversion.o): relocation
R_X86_64_32 against `.rodata.str1.1' can not be used when making a shared
object; recompile with -fPIC
/opt/openssl-1.0.1g/lib/libcrypto.a: co
list.
>
> Michael Wojcik
> Technology Specialist
> Micro Focus
>
> michael.woj...@microfocus.com
> 519 West Ash Street
> Mason, MI 48854-1553
> Direct:+1 517 639 0892
> Mobile : +1 517 862 9464
>
>
>
>
> From: owner-openssl-us...@opens
Thank you to AirVPN and Paolo for stepping up !
jim
==
Jim McMurry
Milton Security Group
261 Imperial Highway Suite 550
Fullerton CA 92835
http://www.miltonsecurity.com
On Jul 2, 2014, at 6:00 AM, Steve Marquess
wrote:
> We have received a donation of US$1,327.00 f
>>>>> "JR" == Joris Van Remoortere writes:
JR> I would like to ask your opinion and advice on accepting HTTP / HTTPS
JR> connections on the same port.
IPP support both w/ and w/o tls on port 631.
Cups handles it like this:
http://www.pwg.org/archives/ipp/20
level, or less serious/widespread. Currently a wide variety of
vulnerabilities are just indicated as “high” severity, which could mean
anything from a relatively minor DoS affecting 5 implementations to MITM
affecting all servers/browsers.
Thanks,
lid instruction mnemonic 'adcxq'
adcxq %rax,%r13
^
x86_64-mont.s:973:2: error: invalid instruction mnemonic 'adoxq'
adoxq %rbp,%r15
^
make[2]: *** [x86_64-mont.o] Error 1
make[1]: *** [subdirs] Error 1
make: *** [build_crypto] Error 1
This worked with 1.0.1 versions.
recommendation at:
http://comments.gmane.org/gmane.comp.encryption.openssl.user/47242
and change the MAKEDEPPROG=makedepend to MAKEDEPPROG=$(CC) -M
?
Thanks,
James.
smime.p7s
Description: S/MIME cryptographic signature
--
openssl-users mailing list
To unsubscribe: https://mta.openssl.org/mailman
abscent in my ssl packet.
Extension: server name present
Extension:application layer protocol negotiation
Apart from that I did not set path of Server Certificate.
Shall these impact my connect request.
Can somebody help.
Thanks
James
--
openssl-users mailing list
To unsubscribe: https
ed chacha (c^)
>3. Unable to load/add a dynamic engine (danigrosu)
>4. Regarding TLS 1.3 (James)
>5. Re: Regarding TLS 1.3 (Matt Caswell)
>6. ssl connect failed (james sqawz)
>7. Re: ssl connect failed (danigrosu)
>
>
>
Hi all,
I want to add two extension field in CLIENT HELLO request.
Extension: next protocol negotiation
Extension:application layer protocol negotiation
For that purpose which API/function of openssl I will call?
Thanks
Pranab
On Mon, Apr 18, 2016 at 6:16 PM, james sqawz wrote:
> Hi
Hi,
I'm trying to build a rpm for openssl-1.0.1u on CentOS 7 x86_64. To get
the rpmbuild to run, I had to remove several comments in changelog, because
they weren't formatted correctly. The second problem I ran into is one
during the rpm staging:
The tail end of the output from rpmbuild -ba opens
Getting the following error when attempting to make:
NMAKE : fatal error U1073: don't know how to make
'"crypto\include\internal\bn_conf.h.in"'
Stop.
Here's the lines from the makefile that are creating the error:
crypto\include\internal\bn_conf.h: "crypto\include\internal\bn_conf.h.in"
"configd
lines.
From: openssl-users [mailto:openssl-users-boun...@openssl.org] On Behalf Of
Benjamin Kaduk via openssl-users
Sent: Monday, May 1, 2017 11:38 AM
To: openssl-users@openssl.org
Subject: Re: [openssl-users] NMAKE error
On 05/01/2017 10:02 AM, James Condren wrote:
Getting the following error
_conf.h.in exists? It should,
it's part of the source. Can you check if there's a file with a similar name
in crypto\include\internal?
Cheers,
Richard ( am wondering if there are tar implementations that screw up file name
with more than one period... )
In message
on Mon, 1 May
Hi,
I have a `Certificates.p12` file that I wish to convert to a
`certificates.pem` containing an unencrypted private key in PKCS#1 format.
I have previously been able to do this by running:
openssl pkcs12 -in Certificates.p12 -out certificates.pem -nodes
-clcerts
The resulting `certificates
I'm wondering why the sigbuf parameter of RSA_verify is declared as
unsigned char* rather than const unsigned char*. It's not going to
change the signature, is it?
--
James W. Walker, Innoventive Software LLC
<http://www.fra
Nils Larsch wrote:
James Walker wrote:
I'm wondering why the sigbuf parameter of RSA_verify is declared as
unsigned char* rather than const unsigned char*. It's not going to
change the signature, is it?
it should not change the signature input and in openssl >= 0.9.8
it is co
I built OpenSSL itself using the perl script for configuration, and then nmake,
as described. All tests passed 100%, as built with the Windows SDK.
I setup my path as expected, and try to run extconf.rb in ext/openssl from the
ruby distribution in order to build a .so, and I get:
E:\dev\build_
r duchovni posted a patch on 01/31/07 to this list.
Thanks
james
TLS: error:140D308A:SSL routines:TLS1_SETUP_KEY_BLOCK:cipher or hash
unavailable ../../../../common/openssl/ssl/t1_enc.c:461
A little history I have compiled openssl version 0.9.8e on Sun v420 system
running opensolaris (version 11).
I used the gcc 3.4.3 compiler loaded in /usr/sfw/bin.
I then c
unable to post to the openssl-users
list even though I am subscribed
if you can refer me a post online or know the answer I would appreciate the
help.
Thanks
james
I configured OpenSSL with our application server, but it seems when I
connect my lpatop the next day the connection fails. It seems that my IP
address changes because of dhcp, but the server does not seem to care.
If I restart the server, I can then connect my client. Does OpenSSL
somehow cacvhe my
. If your
application server is providing cache services to OpenSSL, then that
might cause issues if it breaks the server-defined caching rules.
-Kyle H
On 10/17/07, Jurden, James <[EMAIL PROTECTED]> wrote:
>
>
> I configured OpenSSL with our application server, but it seems when I
>
Has anyone configured OpenSSL with HP ServiceCenter?
__
OpenSSL Project http://www.openssl.org
User Support Mailing Listopenssl-users@openssl.org
Automated List Manager
Hello,
I need to port OpenSSL (0.9.8 or 0.9.7) to VxWorks 6.4 for SH4. In my
digging around, I see that people have done a linux-sh4 target, and
there are some vxworks-ppc ports. I don't know if I can combine them or
what...
Can anyone give me some pointers on the best way to get the port
dies.
how do I setup the certificates and configure the clients appropriately.
thanks for any help or examples.
james
__
OpenSSL Project http://www.openssl.org
User Support Mailing List
certificate too.
Thanks,
;) james.
__
OpenSSL Project http://www.openssl.org
User Support Mailing Listopenssl-users@openssl.org
Automated List Manager [EMAIL PROTECTED]
smime.p7m
Description: S/MIME encrypted message
1 - 100 of 199 matches
Mail list logo
