Re: [openssl-users] Hostname validation in OpenSSL 1.1.0

> On Apr 4, 2017, at 5:57 PM, Hajjar, Alain (US) > wrote: > > I am looking for confirmation regarding the hostname validation > implementation in OpenSSL 1.1.0. Is the example code at > https://wiki.openssl.org/index.php/Hostname_validation the correct > way to do

[openssl-users] Hostname validation in OpenSSL 1.1.0

Hello, I am looking for confirmation regarding the hostname validation implementation in OpenSSL 1.1.0. Is the example code at https://wiki.openssl.org/index.php/Hostname_validation the correct way to do hostname validation with both 1.1.0 and 1.0.2? Specifically, in order for OpenSSL 1.1.0 to

Re: [openssl-users] TLS 1.3

On 04/04/17 12:55, Thiago Arrais wrote: > I'm interested in contributing to TLS 1.3 support. Is it "done" yet? > Where do I start? Can anyone point me in the right direction? > > (BTW, total newbie here. Never contributed to OpenSSL.) Mostly TLSv1.3 support is already done. You can try it out

Re: [openssl-users] TLS 1.3

Thank you for the reply, Matt. Let's talk on openssl-dev. On Tue, Apr 4, 2017 at 9:33 AM Matt Caswell wrote: > > > On 04/04/17 12:55, Thiago Arrais wrote: > > I'm interested in contributing to TLS 1.3 support. Is it "done" yet? > > Where do I start? Can anyone point me in the

Re: [openssl-users] [openssl-dev] verify depth behavior change from 1.0.2 to 1.1.0?

Ben Kaduk: Do we know the values that are being passed to SSL_CTX_set_Verify_depth() match the -verify_depth argument, or do they differ? If they differ, do identical arguments to the function behave the same in 1.1.0 and 1.0.2? Viktor: What we’re getting at here, is that this appears to be a

Re: [openssl-users] [openssl-dev] verify depth behavior change from 1.0.2 to 1.1.0?

> On Apr 4, 2017, at 10:41 AM, Short, Todd via openssl-users > wrote: > > Ben Kaduk: > > Do we know the values that are being passed to SSL_CTX_set_verify_depth() > match the -verify_depth argument, or do they differ? If they differ, do > identical arguments to the

Re: [openssl-users] [openssl-dev] verify depth behavior change from 1.0.2 to 1.1.0?

On 04/04/2017 10:39 AM, Viktor Dukhovni wrote: >> On Apr 4, 2017, at 10:41 AM, Short, Todd via openssl-users >> wrote: >> >> Ben Kaduk: >> >> Do we know the values that are being passed to SSL_CTX_set_verify_depth() >> match the -verify_depth argument, or do they

Re: [openssl-users] OCSP Responder Running on Localhost using the Source Code..!

The code for the command "openssl xyz" is usually in the source file apps/xyz.c . So the example OCSP responder is probably in the file apps/ocsp.c . On 04/04/2017 09:04, RajatRokade wrote: Hi.. I want to create an OCSP responder running on my local machine to avoid the requirement of internet

[openssl-users] OCSP Responder Running on Localhost using the Source Code..!

Hi.. I want to create an OCSP responder running on my local machine to avoid the requirement of internet connection.I tired using the command line approach to set up a new CA,build database,run the responder on the localhost and finally query the OCSP responder. I was able to query the server and

[openssl-users] TLS 1.3

I'm interested in contributing to TLS 1.3 support. Is it "done" yet? Where do I start? Can anyone point me in the right direction? (BTW, total newbie here. Never contributed to OpenSSL.) -- openssl-users mailing list To unsubscribe: https://mta.openssl.org/mailman/listinfo/openssl-users