Hi Mag,
Thus wrote Mag (mag...@gmail.com):
I'm interested in using custom OIDs for private application purposes.
I've found the documentation to be deficient.
For instance, in openssl.cnf it gives an example line of
[ new_oids ]
#testoid1=1.2.3.4
When I uncomment that line I can't even
I'm sorry very very much, I downloaded 1.0.0 instead of 1.0.0a.
In last version I did the changes, compiled and ran OK.
thank you very much for your help.
2010/6/29 Dr. Stephen Henson st...@openssl.org
On Tue, Jun 29, 2010, Nacho lvarez wrote:
Ok, with option disable-capieng (I didn't know
Hi Mag,
On Tue, Jun 29, 2010 at 06:43:24PM -0700, Mag wrote:
I'm interested in using custom OIDs for private application purposes.
I've found the documentation to be deficient.
For instance, in openssl.cnf it gives an example line of
[ new_oids ]
#testoid1=1.2.3.4
When I uncomment
Hi Mag,
-Original Message-
From: Mag
I'm interested in using custom OIDs for private application purposes.
I've found the documentation to be deficient.
For instance, in openssl.cnf it gives an example line of
[ new_oids ]
#testoid1=1.2.3.4
When I uncomment that line I can't
On Wed, Jun 30, 2010, Christian Hohnstaedt wrote:
Hi Mag,
On Tue, Jun 29, 2010 at 06:43:24PM -0700, Mag wrote:
I'm interested in using custom OIDs for private application purposes.
I've found the documentation to be deficient.
For instance, in openssl.cnf it gives an example line of
Hi Patrick, all,
thanks for correcting my assumptions.
Thus wrote Eisenacher, Patrick (patrick.eisenac...@bdr.de):
That line only defines the label testoid1 and assigns the value
1.2.3.4.
To use a private oid, you have to define its asn1 structure first.
Afterwards you can include it in
Hi Martin,
-Original Message-
From: Martin Kaiser
Now I understand that the oid definitions in the config file are not
just used internally (for defining extensions etc) but
they're picked up
by the command line tools.
Is it correct that only req and ca use the oid definitions
On Wed, Jun 30, 2010, Eisenacher, Patrick wrote:
Hi Martin,
-Original Message- From: Martin Kaiser
Now I understand that the oid definitions in the config file are not just
used internally (for defining extensions etc) but they're picked up by the
command line tools.
Is
I am seeing a very slow initialization on a single Windows 2003 box with
openssl-0.9.8l.
During initialization the function RAND_screen gets called. This
effectively hashes the frame buffer to generate entropy. In our case we
are running as an IIS user and I'm not even sure what screen it's
Could someone explain this to me?
In various places RAND_add is called with sizeof a struct and the number
of fields. Each of the fields is used to gather a byte of entropy. I
don't understand how this works seeing that, due to field padding, we
can't quite tell where the fields begin.
Is this
RAND_add just treats those structs as bunches of bytes (count =
sizeof(struct)) and meanwhile 'guestimates' that the entropy ~
unpredictability of said content is about 1 byte per field. The latter is a
guestimate, nothing more. And it's probably an optimisitc guestimate at that
too, but that's in
:-( I hope I recall correctly that what I mention next is indeed stuff
happening in RAND_screen()... IIRC RAND_screen() isn't 'only' reading the
screen but also doing a system-level heap traversal and a few other things
and it was exactly that system-level heap traversal that slowed a few
spurious
On Wed, Jun 30, 2010, Ger Hobbelt wrote:
:-( I hope I recall correctly that what I mention next is indeed stuff
happening in RAND_screen()... IIRC RAND_screen() isn't 'only' reading the
screen but also doing a system-level heap traversal and a few other things
and it was exactly that
On Wed, Jun 30, 2010, Dr. Stephen Henson wrote:
On Wed, Jun 30, 2010, Ger Hobbelt wrote:
:-( I hope I recall correctly that what I mention next is indeed stuff
happening in RAND_screen()... IIRC RAND_screen() isn't 'only' reading the
screen but also doing a system-level heap traversal
Thank you... this is mostly what I expected.
In our case we having a problem with a CGI program so the response time
is important and initialization happens many times.
We may just have to hope no other boxes display this behavior :)
On Wed, 2010-06-30 at 19:19 +0200, Ger Hobbelt wrote:
:-( I
This is Windows 2003, 64 bit, and it's definitely in RAND_screen.
I'm trying to move things to 1.0.0a now.
On Wed, 2010-06-30 at 20:47 +0200, Dr. Stephen Henson wrote:
On Wed, Jun 30, 2010, Ger Hobbelt wrote:
:-( I hope I recall correctly that what I mention next is indeed stuff
happening
Thanks for the various replies.
On Wed, Jun 30, 2010 at 4:26 AM, Dr. Stephen Henson st...@openssl.org wrote:
If you want an extension then you need to make use of the mini-ASN1 compiler
to add the appropriate fields.
Note that if you add a new OID name in this way it only affects that
I am looking into the possibility of using openssl on an sctp
association (for SIP, specifically), and the standardized way of doing it is
non-trivial (although not terribly complex; I call it non-trivial because it is
doing something other than one stream, ordered delivery sctp. It
On Wed, Jun 30, 2010, Mag wrote:
Thanks for the various replies.
On Wed, Jun 30, 2010 at 4:26 AM, Dr. Stephen Henson st...@openssl.org wrote:
If you want an extension then you need to make use of the mini-ASN1 compiler
to add the appropriate fields.
Note that if you add a new OID name
Hi,
My application runs fine with OpenSSL 0.9.8g on SUSE LINUX Enterprise Server
9 (s390x)
VERSION = 9 PATCHLEVEL = 4 . I re-compiled my application with libcrypto.a
and libssl.a of OpenSSL 0.9.8o (w/o FIPS). Now when I run my application I
get the segmentation fault error with a core dump. Below
20 matches
Mail list logo