Hello,
I am trying to override the DES/3DES in OpenSSL. The API EVP_EncryptInit_ex()
requires the name of the cipher. For DES, the closes I found (in
crypto/objects) is DES-CBC. I didn't find for 3DES - something like
3DES-CBC. The only match I see is PBE-SHA1-3DES. Can someone please
Problem Description:
When a digest has been signed and a response is produced, the current
version of openssl will not verify the contents correctly if the certificate
used to sign the digest has expired.
Solution:
When verifying the response/token, the time at which the digest was signed
is
Problem Description:
I was getting compile issues when changing from openssl 0.9.8 to openssl
current snapshot. The errors were in safestack.h. It appears that some
functions do indeed cast but others do not. void* is currently being passed
in due to CHECKED_PTR_OF being part of the macro.
Problem Description:
When a digest has been signed and a response is produced,
the current version of openssl will not verify the contents
correctly if the certificate used to sign the digest has expired.
Solution:
When verifying the response/token, the time at which the digest was
signed
You bring up a good issue about revocation and it isn't something I've
thought about, just some details from RFC3161:
A) Time-stamping information needs to be obtained soon after the
signature has been produced (e.g., within a few minutes or hours).
1)The signature is
