Jeremie Le Hen wrote:
% char *tls_serial_number(X509 *peer)
% {
% ASN1_INTEGER *sn;
% BIGNUM bn;
% char *bnstr, *snstr;
% size_t len;
%
% if ((sn = X509_get_serialNumber(peer)) == 0)
% return (0);
% ASN1_INTEGER_to_BN(sn, &bn);
> We are trying to debug an exchange csr request. I would like to read
> this csr in with openssl and read it in plain text format somehow.
> Can this be done?
openssl req -text
DS
__
OpenSSL Project
Hi list,
Please Cc: me when replying.
I've coded the following function (in Postfix FWIW). Nothing tricky:
% char *tls_serial_number(X509 *peer)
% {
% ASN1_INTEGER *sn;
% BIGNUM bn;
% char *bnstr, *snstr;
% size_t len;
%
% if ((sn = X509_get_serialNumb
Hi There.,
Marek, hope ur reading this mail.
I am hitting a strange problem with Openssl. Recently I migrated from
OpenSSL-0.9.8a to OpenSSL-0.9.8d, from the release notes, I see that some
fixes have gone into cipher selection logic of OpenSSL.
Now for the same CLIENT HELLO message (same as in n
We are trying to debug an exchange csr request. I would like to read
this csr in with openssl and read it in plain text format somehow.
Can this be done?
__
OpenSSL Project http://www.openssl.org
Us
RFC 4346 says the server key exchange message is only sent when DHE_DSS,
DHE_RSA, or DH_anon is used as the cipher suite. It further says the
server key exchange message can contain RSA or DH public components. I
am confused. If DHE_DSS, DHE_RSA, or DH_anon is used, then DH is used
for key exchange
Is it possible to use a different server certificate based on the
client IP address? I am attempting to get a TCP connection, check the
source IP, and then create an SSL context with the correct
certificate, and establish an SSL connection using that context. It
doesn't seem to be working, but I
Greetings,
I use gcc version 4.1.3 , Debian 4.1.2-13. I want to install openssl 0.9.7,
i am getting the following Installation error:
make[2]: Nothing to be done for `all'.
make[2]: Leaving directory `/usr/local/openssl/crypto/lhash'
making all in crypto/rand...
make[2]: Entering directo
I'm currently working on a client/server order system that uses SSL
with client and server certificates. I'm using OpenSSL via Ruby.
Everything has been working well, but we need to add a new trading
partner to the system and they required us to get a different
certificate for use only with them.
Please,
I use gcc version 4.1.3 20070629 (prerelease) (Debian 4.1.2-13). I want to
install openssl 0.9.7, i am getting the following Installation error:
make[2]: Nothing to be done for `all'.
make[2]: Leaving directory `/usr/local/openssl/crypto/lhash'
making all in crypto/rand...
mak
Please,
I use gcc version 4.1.3 20070629 (prerelease) (Debian 4.1.2-13). I want to
install openssl 0.9.7, i am getting the following Installation error:
make[2]: Nothing to be done for `all'.
make[2]: Leaving directory `/usr/local/openssl/crypto/lhash'
making all in crypto/rand...
mak
Hey Guys,
I'm upgrading a set of shared libraries to be FIPS compliant. I haven't
been able to link with the FIPS crypto library on Solaris. Is there any
way to build shared libraries with a FIPS crypto library?
Thanks,
Geoff
I have an encrypted message which I produced with the following command
line:
openssl smime -sign -signer web-public.pem -inkey web-private.key
-outform der -nodetach -binary -in clear.txt | openssl smime -encrypt
-des3 -binary -outform pem -out encrypt.txt dummy.pem
How do I decrypt encrypt.txt?
Hi,
are there some available settings to build openssl for small footprint
applications and devices?
I mean to get a smaller library like matrixssl [1] and strip thing and
module out someone might not need ?
Thanks in advance for your reply
Cheers
Michael
[1] http://matrixssl.com/
__
Hello,
1)
> > Give the above constraints which of the curve definitions in
> > crypto/curve/ec_curve.c would fit within my requirements?
Have a look at the below link if you have the acess.
http://grouper.ieee.org/groups/1363/Research/Other.html#ANSI
>2)What are the functions/APIs
15 matches
Mail list logo