I am using openssl in arm embedded platform. I want to support https, so it
will use openssl. But I have encouterd some problem. The application aborted
for some unknown reason. I tried to trace the problem and found the it aborted
on call PEM_read_bio_X509 (ssl_rsa.c). And I can't trace deep
Is there any way to convert .PEM to pkcs12
Please help me
Thanks Joshi
On Mon, Sep 22, 2008 at 6:10 PM, vinni rathore [EMAIL PROTECTED] wrote:
Hi,
Try to use this
openssl x509 –in input.crt –inform DER –out output.crt –outform PEM
If u still get the error then tell the exact error u r
There is no 'debug mode' of OpenSSL. However, please note that
OpenSSL doesn't check its pointers to make sure that they're valid
before trying to use them.
So, how is it aborting? Is it aborting due to invalid memory access?
Is it aborting due to a breakpoint? Or is it just failing and your
joshi chandran schrieb:
Is there any way to convert .PEM to pkcs12
Have a look at http://www.openssl.org/docs/apps/pkcs12.html
PKCS#12 is a bag for multiple things, usually a private key plus one
or more certificates.
Please help me
Thanks Joshi
Hope it helps
Ted
--
PGP Public Key
Dear Kyle,
Many thanks for your response.
There is no 'debug mode' of OpenSSL. However, please note that OpenSSL
doesn't check its pointers to make sure that they're valid before trying to
use them. So, how is it aborting? Is it aborting due to invalid memory
access? Is it aborting
Dear Klarth,
The application was aborted abmornally in function call PEM_read_bio_X509.
So I don't know where to add ERR_print_errors. And I used the same certificate
file in my host environment. It worked well.
The problem was solved by updating openssl to the latest release 0.9.8i
(the
I think it is depend upon how you configured.
Thank you.
Regards,
--Ajeet Kumar Singh
Sarve Bhavantu Sukhina ,Sarve Santu NiramayaSarve Bhadrani Pashyantu , Maa
Kaschit Dukha Bhagh Bhavet
-Original Message-
From: [EMAIL PROTECTED]
[mailto:[EMAIL PROTECTED] On Behalf Of
Dear All;
Thank you all of you for your support. When I called
SSL_CTX_load_verify_locations() and SSL_CTX_set_verify() to verify the peer
certificate but I got fetal error unkown certificate authority. Please let
me know what is reason behind it. But I have CA certificate, client
Hi,
Can anyone tell me if SSL_peek is a blocking or non-blocking call ?
When I use it inside my code, then the program blocks on this fuction call
where there is no data on the socket.
The reason I want to use this call is that before closing the SSL connection
by using 'SSL_shutdown', I want to
Dear All,
I have self signed root certificate I want to verify the peer certificate.
Please tell me how to verifying. What API I need to call.
Thank you.
Regards,
--Ajeet Kumar Singh
[EMAIL PROTECTED] wrote:
I have an application which is occasionally hanging. I have tracked it
down to an SSL_shutdown call.
There is an issue with SSL_shutdown() on non-blocking sockets in respect
of knowing when to use the shutdown() call.
I'm not exactly sure if you have run into this
* prashanth s joshi wrote on Tue, Oct 07, 2008 at 21:13 +0530:
Could anyone please tell me how to run the gdb in openssl?
In gdb I am running the command as path_of_bin/bin/openssl s_client -connect
ipaddress:4433.
But i get the error as: Undefined command: . Try help.
why is it so?
Am Montag, 15. September 2008 11:48:15 schrieb Dan Ribe:
Hi,
I have a client/server application, where client authenticate itself by
signing a random string (sent by server) using its private key. Whole logic
is working fine for me. I am using PEM_read_PrivateKey() function to read
the
Hi Gurus,
I am not subscribed to this list so please reply to my personal email
id( [EMAIL PROTECTED]).
Our multi-threaded application is crashing and the pstack of the core
points to openssl. We r using openssl version 0.9.6g
and http://www.openssl.org/news/changelog.html points to a bug
Where is simple example of crypt string with AES?
#include unistd.h
#include stdlib.h
#include string.h
#include openssl/evp.h
#include openssl/bio.h
#include openssl/rand.h
#include openssl/sha.h
#include openssl/hmac.h
#include openssl/err.h
int main(int argc, char **argv) {
That is great news, Dr. Hensen.
In our test with openssl 0.9.7e, the behavior of certificate expiration
date calculation does not seem to be consistent across different OS.
For instance, when we use openssl to generate pem files on Windows and
MacOS X with system time set beyond 2012, we get
Hi,
Can anyone tell me if SSL_peek is a blocking or non-blocking call ?
It can be either.
When I use it inside my code, then the program blocks on this fuction call
where there is no data on the socket.
If you're using blocking socket calls, that's what will happen.
The reason I want to
Hello,
both psql and pgAdmin refuse to connect to my PostgreSQL server using SSL.
These two error messages alternate:
SSL error: sslv3 alert certificate expired
SSL error: certificate verify failed
CA certificate is valid till 2011.
Server certificate is valid till 2009.
On Wed, Oct 08, 2008, Andrej Podzimek wrote:
Hello,
both psql and pgAdmin refuse to connect to my PostgreSQL server using SSL.
These two error messages alternate:
SSL error: sslv3 alert certificate expired
SSL error: certificate verify failed
CA certificate is valid till
In OpenSSL 0.9.8i, if I try to get the openssl build information, I get
C:\OpenSSL\0.9.8i\ms\releaseopenssl
OpenSSL version
OpenSSL 0.9.8i 15 Sep 2008
OpenSSL version -h
usage:version -[avbofp]
error in version
OpenSSL version -d
OPENSSLDIR: /usr/local/ssl
Apparently the '-d' flag is missing in
Are any intermediate CA certificates involved?
No. The CA is home-made, created using OpenSSL. It has a self-signed
certificate.
This command will dump all certificates received:
openssl s_client -connect hostname:portnum -showcerts
[EMAIL PROTECTED] ~]$ openssl s_client -connect
Is there an estimated (planned) date for when the OpenSSL FIPS 1.2 module
will be released?
--
View this message in context:
http://www.nabble.com/OpenSSL-FIPS-1.2-availability--tp19888614p19888614.html
Sent from the OpenSSL - User mailing list archive at Nabble.com.
When it's done, it will be announced. There's unfortunately no
rushing the validation lab or the CMVP. Thus, there is no estimation,
there is no plan, and we just have to wait. :(
-Kyle H
On Wed, Oct 8, 2008 at 3:12 PM, pbirk [EMAIL PROTECTED] wrote:
Is there an estimated (planned) date for
How about posting the certificate chain printed by -showcerts? If you
don't get one, then it's entirely possible that you've got a problem
on your server (such as not having the correct private key for the
certificate).
-Kyle H
On Wed, Oct 8, 2008 at 2:16 PM, Andrej Podzimek [EMAIL PROTECTED]
How about posting the certificate chain printed by -showcerts? If you
don't get one, then it's entirely possible that you've got a problem
on your server (such as not having the correct private key for the
certificate).
Well, that is possible, but not very probable. I am the only admin of the
Hello,
I am trying to install openssl on wince 5.0 platform. I encountered some
error messages when I did the test process.
Here is my environment:
1. A mobile device with Intel PXA270 XScale CPU and Windows Mobile 5.0.
2. Windows CE 5.0 SDK.
3. Microsoft eMbedded Visual C++ 4.0.
4. wcecompat
26 matches
Mail list logo