Hi Steve:
Thanks for your reply. Just so that the mailing list has this answer the
next time some poor sod has to implement this, I'd just like to confirm
that this is now the right formulation in openssl.cnf:
[my_cert_extensions]
basicConstraints = CA:FALSE
keyUsage =
Has anyone tackled getting OpenSSL to compile for Windows Mobile 6.1
with Visual Studio 2008?
There appears to be some instructions for setting it up to compile
with EVC++ 4 and VS 2005, which provide the necessary runtime
environments... however VS 2008 does not provide them.
Are there any
Thanks Dave,
Using ActiveState Perl solved the problem.
Pankaj
Dave Thompson-4 wrote:
From: owner-openssl-us...@openssl.org On Behalf Of Pankaj Aggarwal
Sent: Tuesday, 25 August, 2009 05:06
I am using cygwin on windows xp to compile FIPS Openssl 1.2 using
Visual
Dave Thompson wrote:
From: owner-openssl-us...@openssl.org On Behalf Of Pankaj Aggarwal
Sent: Tuesday, 25 August, 2009 05:06
I am using cygwin on windows xp to compile FIPS Openssl 1.2 using
Visual studio 2005.
Apparently you mean cygwin _perl_. The MS compiler and
Here is how my ErrorSet is constructed :
fd_set WriteSet;
FD_ZERO(WriteSet);
FD_SET(m_sock_fd, WriteSet);
fd_set ErrorSet;
FD_ZERO(ErrorSet );
FD_SET(m_sock_fd, ErrorSet );
Le 25/08/2009 20:09, Patrick Patterson a écrit :
The only way to add this extension to your
root cert is to re-issue your Root CA certificate (you can use the same
private keys, so you wouldn't have to change or re-do any of the other
certificates in your trust chain, as long as your Certificate
OK, then how do I re-issue my root CA certificate with my already
existing ca.key ?
If I could have a sample commande line for openssl it would help me .
something like
OPENSSL x509 -set_serial $SERIAL -clrext -extfile CA-EXTENSION.prm -days
$DURATION -CA $CAPREFIX-ca.cacert -CAkey
Script started on Wed Aug 26 05:26:54 2009
doctor.nl2k.ab.ca//usr/source/openssl-1.0.0-stable-SNAP-20090826$ make
making all in crypto...
ar r ../libcrypto.a cryptlib.o mem.o mem_dbg.o cversion.o ex_data.o cpt_err.o
ebcdic.o uid.o o_time.o o_str.o o_dir.o mem_clr.o
/usr/bin/ranlib
On Wed, Aug 26, 2009, William A. Rowe, Jr. wrote:
Dave Thompson wrote:
From: owner-openssl-us...@openssl.org On Behalf Of Pankaj Aggarwal
Sent: Tuesday, 25 August, 2009 05:06
I am using cygwin on windows xp to compile FIPS Openssl 1.2 using
Visual studio 2005.
On Wed August 26 2009, The Doctor wrote:
Script started on Wed Aug 26 05:26:54 2009
doctor.nl2k.ab.ca//usr/source/openssl-1.0.0-stable-SNAP-20090826$ make
making all in crypto...
ar r ../libcrypto.a cryptlib.o mem.o mem_dbg.o cversion.o ex_data.o
cpt_err.o ebcdic.o uid.o o_time.o o_str.o
On Wed, Aug 26, 2009 at 07:14:45AM -0500, Michael S. Zick wrote:
On Wed August 26 2009, The Doctor wrote:
Script started on Wed Aug 26 05:26:54 2009
doctor.nl2k.ab.ca//usr/source/openssl-1.0.0-stable-SNAP-20090826$ make
making all in crypto...
ar r ../libcrypto.a cryptlib.o mem.o
Hi, this is a two part question. First in the cipherEncrypt16b function
below I try to encrypt a signle block with aes128, but I cant really use
EVP_CipherFinal_ex since it seems to put out and extra block of data even
tho its only 16bytes put in.. This part works tho when EVP_CipherFinal_ex is
Hello all!
I read this thread http://www.mail-archive.com/openssl-users@openssl.org/msg51998.html
having the same problem. I have to set up a certificate in order to
make a secure login from my machine to the Google/Youtube Data API.
I updated my version of OpenSSL to 0.9.8k and tried again,
Forwarded to openssl-users for public discussion.
Best regards,
Lutz
- Forwarded message from Dan Chan pk.c...@qinetics.net -
Date: Wed, 26 Aug 2009 16:48:22 +0800
From: Dan Chan pk.c...@qinetics.net
User-Agent: Thunderbird 2.0.0.23 (Windows/20090812)
To:
Thank you for your response. I hope you can help me get answers to the
following questions -
1) Why do we need to deviate from the Diffie-Hellman Key exchange theory -
why can't the client calculate the shared secret on its own ?
2) What is the point of generating the DH params and the shared
Le 26/08/2009 12:17, Peter Sylvester a écrit :
OK, then how do I re-issue my root CA certificate with my already
existing ca.key ?
If I could have a sample commande line for openssl it would help me .
something like
OPENSSL x509 -set_serial $SERIAL -clrext -extfile CA-EXTENSION.prm
-days
On Wed, Aug 26, 2009, Johan Foglemark wrote:
Hi, this is a two part question. First in the cipherEncrypt16b function
below I try to encrypt a signle block with aes128, but I cant really use
EVP_CipherFinal_ex since it seems to put out and extra block of data even
tho its only 16bytes put in..
2009
openSSL doctor.nl2k.ab.ca//usr/source/openssl-1.0.0-stable-SNAP-20090826$
make
openSSL making all in crypto...
openSSL ar r ../libcrypto.a cryptlib.o mem.o mem_dbg.o cversion.o ex_data.o
cpt_err.o ebcdic.o uid.o o_time.o o_str.o o_dir.o mem_clr.o
openSSL /usr/bin/ranlib ../libcrypto.a
--Original Message--
From: David Schwartz
Sender: owner-openssl-us...@openssl.org
To: openssl-users@openssl.org
ReplyTo: openssl-users@openssl.org
Subject: RE: WSAEWOULDBLOCK versus WSAECONNREFUSED
Sent: Aug 24, 2009 11:14 AM
Md Lazreg wrote:
It is possible that the previous Windows
William A. Rowe, Jr. wrote:
Dave Thompson wrote:
From: owner-openssl-us...@openssl.org On Behalf Of Pankaj Aggarwal
Sent: Tuesday, 25 August, 2009 05:06
I am using cygwin on windows xp to compile FIPS Openssl 1.2 using
Visual studio 2005.
Apparently you mean cygwin
On Wed, Aug 26, 2009, William A. Rowe, Jr. wrote:
William A. Rowe, Jr. wrote:
Dave Thompson wrote:
From: owner-openssl-us...@openssl.org On Behalf Of Pankaj Aggarwal
Sent: Tuesday, 25 August, 2009 05:06
I am using cygwin on windows xp to compile FIPS Openssl 1.2 using
Jehan PROCACCIA wrote:
Le 26/08/2009 12:17, Peter Sylvester a écrit :
OK, then how do I re-issue my root CA certificate with my already
existing ca.key ?
If I could have a sample commande line for openssl it would help me .
something like
OPENSSL x509 -set_serial $SERIAL -clrext -extfile
On 08/26/2009 04:24 PM, Peter Sylvester wrote:
Jehan PROCACCIA wrote:
Le 26/08/2009 12:17, Peter Sylvester a écrit :
OK, then how do I re-issue my root CA certificate with my already
existing ca.key ?
If I could have a sample commande line for openssl it would help me .
something like
Hi,
I'm trying to use ethereal to observe the network communication between a
test ssl server and a client (built from the demos/ssl samples). For some
reason, the captured communication shows the protocol as TCP and there is
no Secure Socket Layer in the Packet Details Window. Is there any other
dear list,
there is a problem in the Makefiles that precludes correct compilation
of openSSL, at least on cygwin. The problem is present in 1.0.0-beta3 as
well.
In the top-level Makefile the value SDIRS does not contain rc5. As a
result, make links does not create a link to rc5test.c in
Hi all,
I am still getting the same error:
7(Certificate Signature Failure)
@Sandeep : I am using following commands for server and client respectively.
openssl s_server -accept 9000 -cert ~/certs/server.pem
openssl s_client -connect localhost:9000
@Goetz - Well, I hope I am doing it. But
Md Lazreg wrote:
I am not saying that that is how it should behave. I am saying that
this is how it is behaving. With the above code and when my server
is down, my Windows client will output Socket in the error set only.
Which means that the socket was put in the ErrorSet and was not put in
Hi all,
The problem has been solved adding -CAfile to the s_client did the trick.
Thanks alot everyone for the help.
-Vishal
On Wed, Aug 26, 2009 at 10:59 AM, vishal saraswat
vishalsaraswat...@gmail.com wrote:
Hi all,
I am still getting the same error:
7(Certificate Signature Failure)
First, don't use ethereal. It's been superseded (for quite some time
now) by WireShark.
Wireshark also has a lot more decoders written for it. (wireshark.org)
If this doesn't help, please ask again -- but I'm pretty sure it will.
-Kyle H
On Wed, Aug 26, 2009 at 10:55 AM, Ram
Installed Wireshark - still no luck. I have a simple ssl server on one
windows box and an ssl client on the windows box running wireshark. It shows
as TCP instead of SSL which I'm using. My ssl server is running on port
. Since wireshark does not show localhost details on windows, I moved
the
Thank you - that worked. I'm able to see the protocol as TLSv1 which is the
method I'm using. However I'm still missing the Client Hello - probably I'll
be able to find that following on the same lines.
Regards
Ramg
On Wed, Aug 26, 2009 at 5:16 PM, Jean-Paul VILLETTE villett...@free.frwrote:
Hi Ramg,
On Wed, 26 Aug 2009, Ram G wrote:
Installed Wireshark - still no luck. I have a simple ssl server on one
windows box and an ssl client on the windows box running wireshark. It
shows as TCP instead of SSL which I'm using. My ssl server is running on
port . Since wireshark does
You probably need to tell wireshark to decode as SSL, because
that's a non-standard port. Under the Analyze menu, there
will be a Decode as. You can use that to tell wireshark to
use a particular decoder for a particular stream.
Select a packet in the flow you want to analyse. Select
Decode
I am building static libs for openssl-0.9.8j on windows.
The pdb file created during this process is named out32.pdb and it seems that
it contains symbols for just ssleay32.lib and not libeay32.lib. I think that
the build process overwrites the pdb file created for libeay32.lib.
34 matches
Mail list logo