associating a cert with a private key
haven't had any luck with this alias so far, thought I've try it one more time :) here is my understanding of a cert signing request, client create a key pair, send the public key to server for signing server send back the signed cert, now, my question is, from the server response I am able to get a public key, then how do i associate the private key with this public key? any code example to do this? thanks, landi _ Hotmail is redefining busy with tools for the New Busy. Get more from your inbox. http://www.windowslive.com/campaign/thenewbusy?ocid=PID27925::T:WLMTAGL:ON:WL:en-US:WM_HMP:032010_2
Re: associating a cert with a private key
On Sat, 2010-03-27 at 22:41 -0700, sd dd wrote: haven't had any luck with this alias so far, thought I've try it one more time :) here is my understanding of a cert signing request, client create a key pair, send the public key to server for signing server send back the signed cert, now, my question is, from the server response I am able to get a public key, then how do i associate the private key with this public key? any code example to do this? I'm not entirely sure what you're trying to do. Are you suggesting that you'll have submitted more than one signing request at a time, so you'll have _many_ private keys lying around and you don't know which one is associated with which response from the server? If so, perhaps the X509_check_private_key() function in crypto/x509/x509_cmp.c may be relevant to you? You could iterate over the available private keys, looking for one which matches the public key in the certificate you get back from the server. Or you could just keep better track of your outstanding requests? :) -- David WoodhouseOpen Source Technology Centre david.woodho...@intel.com Intel Corporation __ OpenSSL Project http://www.openssl.org User Support Mailing Listopenssl-users@openssl.org Automated List Manager majord...@openssl.org
Re: associating a cert with a private key
On Sun March 28 2010, sd dd wrote: haven't had any luck with this alias so far, thought I've try it one more time :) here is my understanding of a cert signing request, client create a key pair, send the public key to server for signing server send back the signed cert, now, my question is, from the server response I am able to get a public key, then how do i associate the private key with this public key? any code example to do this? In the above example, you only created a single private key - The server response is associated with the only private key that you have. So unless you discarded both the private key and the public key, you still have both. And only one of each. A 1 to 1 relationship. --- Want to try re-stating your problem? Mike thanks, landi _ Hotmail is redefining busy with tools for the New Busy. Get more from your inbox. http://www.windowslive.com/campaign/thenewbusy?ocid=PID27925::T:WLMTAGL:ON:WL:en-US:WM_HMP:032010_2 __ OpenSSL Project http://www.openssl.org User Support Mailing Listopenssl-users@openssl.org Automated List Manager majord...@openssl.org
Re: OpenSSL 0.9.8n released
Sorry to report that this version doesn't compile on my Mac: ... cc -I.. -I../.. -I../../include -DOPENSSL_THREADS -D_REENTRANT -DDSO_DLFCN -DHAVE_DLFCN_H -arch ppc -O3 -DB_ENDIAN -c -o dso_dlfcn.o dso_dlfcn.c dso_dlfcn.c:71: header file 'dlfcn.h' not found cpp-precomp: warning: errors during smart preprocessing, retrying in basic mode make[2]: *** [dso_dlfcn.o] Error 1 make[1]: *** [subdirs] Error 1 make: *** [build_crypto] Error 1 mac% -Nigel __ OpenSSL Project http://www.openssl.org User Support Mailing Listopenssl-users@openssl.org Automated List Manager majord...@openssl.org
How to compile for 64-bit operation on Mac OS Intel?
When I try to compile Postfix 2.7.0, sudo make install ends with: cc -arch x86_64 -DUSE_TLS -DUSE_SASL_AUTH -DUSE_CYRUS_SASL -I/usr/include/sasl -DHAS_PCRE -I/usr/local/include -DHAS_SSL -I/usr/include/openssl -DHAS_MYSQL -I/usr/local/mysql/include/mysql -DBIND_8_COMPAT -DNO_NETINFO -DNO_KQUEUE -g -O -I. -I../../include -DMACOSX -o smtpd smtpd.o smtpd_token.o smtpd_check.o smtpd_chat.o smtpd_state.o smtpd_peer.o smtpd_sasl_proto.o smtpd_sasl_glue.o smtpd_proxy.o smtpd_xforward.o smtpd_dsn_fix.o smtpd_milter.o smtpd_resolve.o ../../lib/libmaster.a ../../lib/libtls.a ../../lib/libdns.a ../../lib/libxsasl.a ../../lib/libmilter.a ../../lib/libglobal.a ../../lib/libutil.a -L/usr/lib -lldap -lsasl2 -L/usr/lib -llber -L/usr/local/lib -L/usr/local/lib -lpcre -lssl -L/usr/local/mysql/lib/mysql -lmysqlclient -lz -lm -flat_namespace ld warning: in /usr/lib/libssl.dylib, file is not of required architecture Undefined symbols: _SSL_CTX_sess_set_get_cb, referenced from: _tls_server_init in libtls.a(tls_server.o) _BIO_set_callback, referenced from: _tls_server_start in libtls.a(tls_server.o) _tls_server_start in libtls.a(tls_server.o) _SSL_CTX_set_info_callback, referenced from: _tls_server_init in libtls.a(tls_server.o) _SSL_CTX_sess_set_new_cb, referenced from: _tls_server_init in libtls.a(tls_server.o) _EVP_MD_size, referenced from: _tls_server_init in libtls.a(tls_server.o) ld: symbol(s) not found collect2: ld returned 1 exit status make: *** [smtpd] Error 1 make: *** [update] Error 1 I've installed OpenSSL 0.9.8n using: ./config --prefix=/usr threads shared The machine is a Mac Mini running OS X 10.5.8 (Leopard). Any suggestions? Thanks, James.__ OpenSSL Project http://www.openssl.org User Support Mailing Listopenssl-users@openssl.org Automated List Manager majord...@openssl.org
