Hi,
I am using openssl OCSP utility as OCSP Responder in linux platform.
Currently as soon as the code which I am using as OCSP Requester gets OCSP
Response it sends the FIN and openssl OCSP Responder also generates the FIN
request to clear the connection as soon as it sends the OCSP Response.
Hi,
When I try the following command
$ openssl speed aes -engine crytodev
*invalid engine cryptodev*
3078063752:error:25066067:DSO support routines:DLFCN_LOAD:could not load
the shared library:dso_dlfcn.c:187:filename(/lib/engines/libcryptodev.so):
/lib/engines/libcryptodev.so: cannot open
Did you build OpenSSL libs by enabling the appropriate flags
- HAVE_CRYPTODEV etc ?
In files crypto/engine/eng_all.c , ENGINE_load_cryptodev will be under
few defines. Make sure your platform have those defines.
Regards,
Gnananasekar
On 11 September 2013 14:34, Anees K A
Hi Gnananasekar,
Thank you for your clarification. I have figured that out by now :D
Now the build process complains that it cannot find crypto/cryptodev.h .
Any ideas?
Regards
anees k A
On Wed, Sep 11, 2013 at 3:58 PM, Gnanasekar R gnanasekar@gmail.comwrote:
Did you build OpenSSL
I have a server that implements secure communication using OpenSSL. The server
does a listen() on a port and keeps track of what listens are secure/SSL
listens. When a peer opens to that IP addr/port, the server sees that it's for
a secure connection and then makes the calls to set up SSL
I'm trying to build a FIPS capable OpenSSL 1.0.1e on a 32-bit Windows XP
box using MinGW + Msys. The FIPS module is version 2.0.5 and it builds
and installs successfully using ./config; make; make install.
I configured OpenSSL 1.0.1e with:
./Configure mingw shared fips
And ran:
make
Re-post ... as nobody responded.
If I use -nameopt utf8 option, the output of the subject is empty even for
ascii string subject DN. This does not seem to match what is said in the man
page. A bug?
Please try out with the attached certificate (removing the .txt ext).
Thanks,
-binlu
From:
On 8/20/2013 8:49 PM, Arthur Mesh wrote:
I am not 100% sure this is a real bug, hence mailing openssl-users
instead of rt@.
641 if (is_sslv3)
642 {
snip
647 unsigned overhang =
header_length-md_block_size;
648
On 9/6/2013 6:26 PM, Perrow, Graeme wrote:
I am having trouble loading the OpenSSL FIPS DLLs (2.0.5, using OpenSSL
1.0.1e) in my 32-bit Windows application. Most of the time I get a
“fingerprint does not match” error from FIPS_mode_set but now and again,
with no code changes, it succeeds. I have
On 9/6/2013 7:11 PM, Walter H. wrote:
Hello,
can someone please tell me the difference between
OpenSSL x.x.x any date
and
OpenSSL x.x.x-fips any date
is there a difference in functionality?
is there a difference in legality?
what does it tell to me, when
openssl version
shows fips, and what
On 9/8/2013 2:13 AM, Graham Leggett wrote:
On 07 Sep 2013, at 11:26 PM, Steve Marquess marqu...@opensslfoundation.com
wrote:
Note that Dual EC DRBG is *NOT* used by default and a calling
application must specifically and deliberately enable it; that cannot be
done accidentally. Any
On 9/8/2013 10:16 AM, Randolph D. wrote:
2013/9/7 Niklas Schnelle niklas.schne...@gmail.com
mailto:niklas.schne...@gmail.com
Dear OpenSSL users,
what can be done to improve the situation.
One option is to switch from central SSL Certs to selfsigned SSL Certs
in a p2p environment
One hypothetical sane use for a certificate policy extension in a CSR
would be if a CA issues certificates of different types and with
different policies (simple example: Regular SSL certs and EV certs).
Then putting the corresponding policy in the CSR indicates, protected
by the
13 matches
Mail list logo