I've successfully compiled the 20010315 snapshot for the Win32
environment using VC++6.0 without any of the "warnings as errors"
messages. All self tests appear to complete successfully. I've
performed some initial tests of my software modules against both
debug and release DLLs and things
- Original Message -
From: Richard Levitte - VMS Whacker [EMAIL PROTECTED]
To: [EMAIL PROTECTED]; [EMAIL PROTECTED]
Sent: Friday, March 16, 2001 5:49 AM
Subject: Re: Problems with SSL_write ..
From: Peter Sylvester [EMAIL PROTECTED]
Peter.Sylvester
Peter.Sylvester sprintf(szBuf,
I'm forwarding a previous message concerning this issue:
- Original Message -
From: Richard Levitte - VMS Whacker [EMAIL PROTECTED]
To: [EMAIL PROTECTED]; [EMAIL PROTECTED]
Sent: Thursday, January 04, 2001 11:50 AM
Subject: Re: Windows, DLLs and variables.
From: "Rob Neff&qu
[snip]
Corinne Dive-Reclus, Principal Software Engineer
Baltimore Technologies, Focus 31, West Wing,Cleveland Road, Hemel
Hempstead,
Hertfordshire, HP2 7BW, England
Tel: +44 (0) 1442 342600 Fax: +44 (0) 1442 347399
E-mail [EMAIL PROTECTED]
Website http://www.baltimore.com/
Just out of
I find this topic thread amusing in that I've encountered a similar issue
located within Netscape's, err..iPlanet's Proxy server with regard to
the insertion of HTTP headers into the stream. I discovered this during
the testing of my https library (which uses OpenSSL of course!).
The proxy was
Regarding Windows DLL's and variables, the following is generated
by the VC6 wizard for the DLL header file for just such a thing:
#ifdef MYDLL_EXPORTS
#define MYDLL_API __declspec(dllexport)
#else
#define MYDLL_API __declspec(dllimport)
#endif
extern MYDLL_API int nTestdll;
MYDLL_API int
Gentlemen,
After successfully establishing an SSL connection,
I'm attempting to
ascertain the validity of the server certificate
received by the client.
The server certificate received was signed by Verisign, yet the
OpenSSL engine does not successfully validate it.The root
certificates I
FWIW: I just picked up a copy myself from Barnes and Nobles so I know they
carry it too...
- Original Message -
From: Dan Kegel [EMAIL PROTECTED]
To: [EMAIL PROTECTED]
Sent: Monday, November 20, 2000 12:30 PM
Subject: Rescorla's book "SSL and TLS"
I just got Eric Rescorla's book "SSL
Eh? Isn't the IV length the same as the block length?
Nope. Rijndael's biggest IV is 16 bytes, but the biggest block is 32
bytes. I haven't checked why, so if someone wants to enlighten me...
I too was under the assumption that the IV in use needed to be
the same size as the block
From: Geoff Thorpe [EMAIL PROTECTED]
Hi there,
[snip]
psmith IMHO this is a legitimate reason to cast away const, and that
psmith the "const" notation on the arguments to lhash is useful for
psmith self-documentation purposes, at the least.
Hmm, perhaps you're right. I'm just
Add another vote to the "remove RSAref code" column (and you may even bypass
the 10 days waiting period for mail-in ballots, unlike certain current
political processes in a large western hemisphere country that shall remain
nameless...)!
- Original Message -
From: Richard Levitte - VMS
With regards to this current discussion, has anyone given thought to the
fact that if the const string address being passed into a function with a
const typed parameter resides within a memory page marked as ReadOnly the
constified function will GP should it attempt to write to that page? I'm
The client app in the demo does not include certificates. Examine the
server app code and cut and paste the certificate code. That will
enable your client app to send a certificate.
To create a new certificate, at least how I did it on WinNT, was to
run testss.bat after modifying the
From: Richard Levitte - VMS Whacker [EMAIL PROTECTED]
[snip]
Well, I'd say that a proof-of-concept does not lie in the version
number, but rather in the use of the package and it's stability and
feasability (sp?). One can look at a number of products out there
with major version numbers
Gentlemen,
Please accept the following suggestion for
discussion.
As a developer for a large financial institution I
am
attempting to
determine the feasibility of using the
functionality provided by the OpenSSL libraries in our
commercial applications. I'm sure you are already
aware that
Pointing out who has been using OpenSSL for how long should provide
confidence in the software. If not, you surely can get a more
appropriately numbered library from RSA Data Security.
Allow me to restate my position. I am determing the feasibility of
using open-source software within a
I too experienced this behavior when attempting to use
ERR_print_errors_fp(),
but I encountered it while attempting a TLSv1 connection to an SSLv3 server
that subsequently caused that same exception in my server. I don't think
our
incidents are separate but rather perhaps a bug in the
Gentlemen,
While testing OpenSSL functionality with a client
and serverapp I wrote,
I encountered the
following issue:
If the server code is using the SSL_METHOD
SSLv3_server_method and the client
is using TLSv1_client_method, the server fails
tonegotiate connection. This does
not happen
18 matches
Mail list logo