> md5 is needed directly for many purposes. I guess that is why FreeBSD
> has its own implementation.
Righto, but md5 (or anything for that matter) from a specific
library/package should be in its own directory.
> > Well, to do that, I'd have to put /usr/local/include before /usr/include
> > on
> Since it seems like md5.h and err.h aren't going to be included
> directly... they could fit in say
md5 is needed directly for many purposes. I guess that is why FreeBSD
has its own implementation.
> Well, to do that, I'd have to put /usr/local/include before /usr/include
> on the include
On Mon, 29 Mar 1999, Ulf [iso-8859-1] Möller wrote:
> If the BSD folks make incompatible changes to the definition, they
> ought to change the name, too.
>
> Renaming the structure in OpenSSL is a bad idea. Otherwise, once
> FreeBSD upgrades to the current version, we have to change it again,
>
[EMAIL PROTECTED] wrote:
>
> It should understand multiple CA's via the -name flag.
Ok, noted.
> It should take multiple "-in xxx" flags.
use the -infiles flag.
> It should take the "-inform" flag (multiply).
> That is, the following should work:
> ssleay revoke -inform DER -in cert.d
> http://www.columbia.edu/~ariel/ssleay/cryptosupp_index.html
You're right, that *should* be linked from the OpenSSL page. It is leaps
and bounds beyond the docs folder.
Can we go one better than that, though? I wonder if those pages shouldn't
form the core of a new set of developer docu
>While the docs are incomplete and not up to date with the latest OpenSSL
>releases, there is an excellent starting point at
> http://www.columbia.edu/~ariel/ssleay/cryptosupp_index.html
Now that there is a stable 0.9.2 release out I guess I had better
convert them all to it. So much for catchi
Niels Poppe wrote:
>
> There's a bug in Configure line 154:
> the entry for "linux-mips" has an embedded linefeed
> because of a line wrap, causing make to choke on it.
>
Well, there's another bug in there, BN_LLONG is not an
object file :)
New patch replaces previous posting
--
Niels Poppe -
> If the BSD folks make incompatible changes to the definition, they
> ought to change the name, too.
Oops. The MD5 code in FreeBSD is RSADSI's.
The rest of my message is still true, though. And eay's implementation
probably is faster anyway. :)
On 3/29/1999 8:02 AM, CJ Holmes enlightened me with the following:
>Much of the code in OpenSSL is quite good but the lack of documentation
>really limits its usefulness. So I'm offering to document one or two
>modules of the library, if that would be a worthwhile task. (Pick a
>module, any mod
> $ ./config
> Configuring for sunos-gcc
> syntax error in file ./Configure at line 9, next 2 tokens "use strict"
Are you using Perl 5? Version 4 is no longer supported.
__
OpenSSL Project http://
> $ ./config
sorry, needed to specify the use of 'perl5' in 'config' instead of
'perl'.
Jeffrey Altman * Sr.Software Designer * Kermit-95 for Win32 and OS/2
The Kermit Project * Columbia University
612 West 115th St #716 * New York, NY * 10025
http://www.kerm
$ ./config
Configuring for sunos-gcc
syntax error in file ./Configure at line 9, next 2 tokens "use strict"
Illegal modulus of constant zero in file ./Configure at line 76, next 2 tokens "table="
Illegal expression (MODULO) as lvalue in file ./Configure at line 235,
next 2 tokens ");"
Illegal modu
There's a bug in Configure line 154:
the entry for "linux-mips" has an embedded linefeed
because of a line wrap, causing make to choke on it.
--
Niels Poppe - org.net bv <[EMAIL PROTECTED]>
--- Configure.orig Mon Mar 29 21:31:40 1999
+++ Configure Mon Mar 29 21:32:05 1999
@@ -151,8 +151,
Hi!
Here it is the first working version. The base code has
been given today afternoon by Pete Brett and required
very little work, but it was needed.
Now it compiles fine under openssl-0.91c (I had to
modify the progs.h adding the revoke_main) just copy
the code in the apps dir and make needed
Does anybody have a sample piece of C code that connects to a Telnet server via
OPENSSL ? I have attempted to write it myself, however, my call to SSL_connect()
fails. After the failure, I call ERR_get_error() and it returns a 0 (no error). My
code looks as follows:
int NSI_SSL_OPEN(SOCKET
The demo programs that came with the source does not compile. for example,
in ssl/cli.cpp on line 70,
char* str = X509_NAME_oneline (X509_get_subject_name (server_cert));
I looked in ssl.h and there is no such function prototype. I found
char* X509_NAME_oneline(X509_name_st *, char *, int)
char*
>I'm hardly an expert on SSLeay/OpenSSL, but how receptive are you guys to
>perhaps one of these changes (If yes, I can probably come up with some
>diffs)?
If the BSD folks make incompatible changes to the definition, they
ought to change the name, too.
Renaming the structure in OpenSSL is a bad
BN_mod is prototyped ANSI style in bn.h and defined k&r style in
bn_mod.c. That normally doesn't cause any problem because bn_mod.c
doesn't include bn.h. But it popped up and choked Solaris's cc
when I tried to build shared libs using the old SSLeay method with
crypto.c (my own version which I'v
It should understand multiple CA's via the -name flag.
It should take multiple "-in xxx" flags.
It should take the "-inform" flag (multiply).
That is, the following should work:
ssleay revoke -inform DER -in cert.dir -inform PEM -in c2.pem
It should take a "-serial nnn" flag to revoke by
I looked around quite a bit in the apps folder, and could not find any
examples of CSR generation. I found the certificate signing code, but no
CSR code. Can someone point me in the right direction?
On another note, I'd like to contribute something to OpenSSL but US law
forbids me from exporti
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
Any ideas?
Yes, I'm a moron.
Don't ask... it's _far_ too embarrassing.
Jon
-BEGIN PGP SIGNATURE-
Version: PGPfreeware 6.0.2i
iQA/AwUBNv+izngWiDO86u4+EQIzKQCeLVGgBCnlvPw8HJiLWqfCWU+vK6AAnioE
XErPNztWJ1YPtSYBmCn5OVl1
=4r3V
-
I have updated a tool to be integrated in the
OpenSSL project and it's usage is very simple
$ ssleay revoke -in $certificate
this will modify the index.txt file to permit
the ca -gencrl to be fully working. It's now
working on the OpenSSL 0.91.c now i have to
download the 0.92b and veri
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
- -Original Message-
From: Albert Max Lai [SMTP:[EMAIL PROTECTED]]
Sent: Saturday, March 27, 1999 9:45 AM
To: [EMAIL PROTECTED]
Subject:Re: 0.9.2b Sparc problem
On Fri, 26 Mar 1999, Ed Kubaitis wrote:
> perl ./Configure no-
Holger,
Thank you for your reply ! I have built the WIN32 version of OPENSSL and I do not
have a file called error.doc on my hard drive. Can you email me a copy please ?
Thank You,
Jeff Roberts
__
OpenSSL Project
Pete Brett wrote:
>
> On Fri, 26 Mar 1999 20:57:16 +0100, you wrote:
>
> The index.txt file is made up of a series of lines (one per
> certificate issued). Each line contains the following fields:
>
> 1. Certificate state: This is a single character with 'V' for valid,
> 'E' for expired and 'R'
The OpenSSL core team is pleased to announce that three additional developers
now joined the OpenSSL development team:
Bodo Moeller <[EMAIL PROTECTED]><[EMAIL PROTECTED]>
Ulf Moeller <[EMAIL PROTECTED]> <[EMAIL PROTECTED]>
Holger Reif <[EMAIL PROTECTED]> <[EMAIL PROTECTED]>
I'm trying to build a RPM for Intel Redhat Linux from spec and patch
from 0.9.1.
I've got problem with shared libs which seems to forget to compile some
BN's.
Did we have to add any patch for i386 arch (bn-rec) ?
Did we must now compile apps with MONOLITIC or as standalone ?
See you.
PS: If Linu
On Fri, 26 Mar 1999 20:57:16 +0100, you wrote:
>Hi,
>
>I have the need to revoke a certificate, anyway I cannot find the revoke
>facility to manage the job ( including altering the index.txt that I think
>is used to manage the CRL (??)).
>
I am going from memory here since I have not got any SSL
Jeff Roberts schrieb:
>
> Can anybody tell me how to get and interpret errors in OpenSSL ? For Example I call
>SSL_Connect() and get a return code of -1. How do I get the error code and error
>string associated with the error, I can't find any documentation on this and all of
>the examples d
Jeff Roberts <[EMAIL PROTECTED]>:
> Can anybody tell me how to get and interpret errors in OpenSSL ? For
> Example I call SSL_Connect() and get a return code of -1. How do I
> get the error code and error string associated with the error, I can't
> find any documentation on this and all of the
[EMAIL PROTECTED] wrote:
>
> Marc Jadoul wrote:
> >
> > Hi,
> >
> > >From RFC2246 (TLS V1.0)
> >
> > certificate_list
> >This is a sequence (chain) of X.509v3 certificates. The sender's
> >certificate must come first in the list. Each following
> >certificate must direct
31 matches
Mail list logo