RE: How to pass SSL connection/object from one process to another?

You can pass file descriptors from once process to another. Stevens Advance Programming in the Unix Environment chaper 15.3 gives examples of how to do this. Hope this helps Dave Peter Senior Software Engineer, Unix Clients Citrix Systems (RD) Ltd Chalfont St Peter, UK

Exception when using SSL_connect with BIO_s_mem

Hi, I am trying to use the openssl library on VC 7 with BIO_s_mem. The first time I call SSL_Connect, I get the expected response with the data to be read. After receiving the response from the server and transferring the information from the socket to the BIO, SSL_Connect crashes. I have

RE: How to pass SSL connection/object from one process to another?

The Server is already doing this that could pass file descriptor from one process to another, but I wonder when the connection is SSL connection, it should pass both SSL object and the connection file descriptor, so the problem is, how to pass the SSL object to other process? -Original

RE: How to pass SSL connection/object from one process to another?

Shared memory or message queue possibly? Dave Peter Senior Software Engineer, Unix Clients Citrix Systems (RD) Ltd Chalfont St Peter, UK +44 (0)1753 276522 [EMAIL PROTECTED] www.citrix.com -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] On Behalf Of lewislyk Sent:

RE: How to pass SSL connection/object from one process to another?

I don't know, it seems can't, because the SSL object is created by SSL_new() which dynamic allocated memory for the object, If you view the file ssl.h, you will found the SSL structure definition, it is complex as it containing many object pointer, so I think it is very hard to manually allocate

Re: RSA Encryption/Decryption.

Hmm, take a look at routines like RSA_new() to create RSA structures. As you coded 'sizeof apub', this will return the size of a _pointer_ - assuming a 32-bit architecture you will get round about four bytes ;-). See: http://www.openssl.org/docs/crypto/RSA_new.html The runtime error is caused

export from oracle wallet with CA certificates

Hi, quick question, does anybody know how to export a server certificate from oracle wallet including CA certificates ? TIA, Ximo. __ Yahoo! Mail Mobile Take Yahoo! Mail with you! Check email on your mobile phone.

Linking of different PKIs

Hi all, it may be a little bit off topic but I guess this could be interesting for some of you. In the last months we tested some means of linking different PKIs together (for example cross-certificates). Tests were conducted with Windows2000, WinXP and Linux and the most common mail- and

Re: encryption / decryption not the same debug / release

From: Mike Gagnon [EMAIL PROTECTED] Date: Sun, 08 May 2005 21:27:31 + I'm zeroing in on my problem. Encryption / decryption WORKS in DEBUG in the Visual C++ IDE BUT NOT when run from windows explorer. Also doesn't work at all in release mode. I tried turning off optimization and

Question about Certificate Revokation lists using openssl ....

Hello all, Is there a tool that I can use to manage CRL's? I am looking at starting my own CA for my company, but we need to revoke certificates before they expire. I think this can be done via the command line, but I was wondering if there is an open source tool out there that can do

Re: Question about Certificate Revokation lists using openssl ....

Matthew McHugh a écrit : Hello all, hello alone Is there a tool that I can use to manage CRL's? I am looking at starting my own CA for my company, but we need to revoke certificates before they expire. I think this can be done via the command line, but I was wondering if there is an

how does server determine http or https ?

hi iam trying to design a server which is compatible with http 1.1 and 1.0. i want to make it secure/nonsecure depending on the client uri. now the problem is how to decide this(by looking at the uri)? when the URI is recvd, i get the data "GET http 1.1 ..? how do i decide whether http

Building with VC6

Title: Building with VC6 I've just got this error while building latest version of OpenSSL: n_pkey.c .\crypto\asn1\n_pkey.c(96) : error C2370: 'NETSCAPE_ENCRYPTED_PKEY_it' : redefinition; different storage class .\crypto\asn1\n_pkey.c(93) : see declaration of

how does server decide whether http or https is to be used?

hi i am trying to design a server which is compatible with http 1.1 and 1.0. i want to make it secure/nonsecure depending on the client uri. now the problem is how to decide this(by looking at the uri)? when the URI is recvd, i get the data GET http 1.1 ..? how do i decide whether

Re: how does server determine http or https ?

This is defined by the port used. The default port for HTTPS is 443 and the default for HTTP is 80. Paul Franz On Mon, 2005-05-09 at 09:52, vijay basav wrote: hi i am trying to design a server which is compatible with http 1.1 and 1.0. i want to make it secure/nonsecure depending on the

RE: Building with VC6

Hello, What u have to do is register environment variables of vc. For that locate vcvars.bat file usually located in C:\Program Files\Microsoft Visual Studio\VC98\Bin or whatever you root directory is or rerun vc++ setup to register vc environment variables. Regards, Ahmad. From: Milan Tomic

RE: Question about Certificate Revokation lists using openssl ....

Thanks. I will take a look at it. -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] On Behalf Of Francois noel Sent: Monday, May 09, 2005 9:34 AM To: openssl-users@openssl.org Subject: Re: Question about Certificate Revokation lists using openssl Matthew McHugh

20050509 SNAPSHOT issue

Why did the below happen? Script started on Mon May 9 07:32:50 2005 gallifrey.nk.ca//usr/source/openssl-0.9.7-stable-SNAP-20050509$  make making all in crypto... making all in crypto/objects... making all in crypto/md2... making all in crypto/md4... making all in crypto/md5... making all

RE: Building with VC6

Hi, No, that doesn't help. :( My VC6 starts building OpenSSL and when compiles 100+ files, it fails for this file (n_pkey.c). From the error message I got I would say something is wrong in the source code of OpenSSL (n_pkey.c file). Best regards, Milan -Original Message- From: [EMAIL

Re: how does server determine http or https ?

Paul Franz [EMAIL PROTECTED] writes: This is defined by the port used. The default port for HTTPS is 443 and the default for HTTP is 80. Or you can use Upgrading to TLS Within HTTP/1.1 as defined in RFC 2817. -- Jostein Tveit [EMAIL PROTECTED]

RE: SSLVerifyClient

Perhaps someone can help me now. I tried a couple of things last week to solve my problem, but none of them worked. Now I am running SSL in debug-mode, so here is a little bit more of the error (this is just a small extract out of the log-file, the logging goes further, but i think here is the

Re: How to pass SSL connection/object from one process to another?

lewislyk wrote: I don't know, it seems can't, because the SSL object is created by SSL_new() which dynamic allocated memory for the object, If you view the file ssl.h, you will found the SSL structure definition, it is complex as it containing many object pointer, so I think it is very hard to

RE: How to pass SSL connection/object from one process to another?

Sorry, I do not have the idea what you mean? What is the OpenSSL memory handler? -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] On Behalf Of Goetz Babin-Ebell Sent: Tuesday, May 10, 2005 3:18 AM To: openssl-users@openssl.org Subject: Re: How to pass SSL

Re: How to pass SSL connection/object from one process to another?

lewislyk wrote: Sorry, I do not have the idea what you mean? What is the OpenSSL memory handler? If I was unclear: OpenSSL doesn't call the memory handling functions (malloc, realloc, free) direct. It uses memory allocate functions (OPENSSL_malloc(), OPENSSL_realloc() and OPENSSL_free()) With

Re: Building with VC6

On Mon, May 09, 2005, Milan Tomic wrote: Hi, No, that doesn't help. :( My VC6 starts building OpenSSL and when compiles 100+ files, it fails for this file (n_pkey.c). From the error message I got I would say something is wrong in the source code of OpenSSL (n_pkey.c file). I use VC++ 6

Re: encryption / decryption not the same debug / release

Hello Ken, Very nice of you to take the time out to write to me. Thanks a lot, I appreciate it very much. I read the article you pointed me to. It's a good one. I think it might be the uninitialized variable reason you mentionned. I was hoping there was some OpenSSL library initialization

RE: Building with VC6

For what it's worth, I've built OpenSSL several times (using VC6), each time just following the instructions in INSTALL.W32 with NASM and it built fine. Ed -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] On Behalf Of Dr. Stephen Henson Sent: Monday, May 09,

PROBLEMS with PKCS7 type signedAndEnveloped

Hi everybody, I need your help, I'm trying to make a PKCS7 signedAndEnveloped. I have read some examples about it, but I dont know where's my error. there's a synthesis of my code: /*/ . ... PKCS7 *thePKCS7 = NULL; if( (thePKCS7 = PKCS7_new()) == NULL

Re: PROBLEMS with PKCS7 type signedAndEnveloped

Before PKCS7_dataInit(), try adding: PKCS7_content_new(thePKCS7, NID_pkcs7_data) U might also want to explore PKCS7_set_detached() to see if this applies for you. -ET Tan Luis Alberto Pérez Paz wrote: Hi everybody, I need your help, I'm trying to make a PKCS7 signedAndEnveloped. I have read some

Re: decryption failed or bad record mac

Tan - Thanks for responding. The dev team is preparing some code that illustrates how we're managing threads. However, with what I have described, how would SSL_CTX respond differently under different loads? From what I've seen, this is a somewhat popular problem. Either many people are

Re: decryption failed or bad record mac

Tan - Ah ha, they'er quicker than I thought they would be. Below, is the method that they're using to create threads using SSL: First off, we are Pre-Threading (creating before used, never deleting) // declared globally SSL_METHOD *my_ssl_method; SSL_CTX *my_ssl_ctx; // end of globally declare

Re: encryption / decryption not the same debug / release

I found my problem. My initialization vector was too short. I remembered that it needed to be a multiple of 8 (I think) and that it needed to have a minimum length... Mike Mike Gagnon ([EMAIL PROTECTED]) wrote*: Hello Ken, Very nice of you to take the time out to write to me. Thanks a

openssl smime usage to have multiple file attachments per smime encoding

Hi, I am new to openssl but not to PKI. I want to send encrypted signed smime encodings but not using an email client or server. I want to send multiple file attachments per encoding but openssl appears to only want to do one message-body per encoding. 1. Can I use openssl smime ... to send