Hi Christian,
I am getting public modulus as NULL and public exponent a
huge number when X509_get_pubkey() and EVP_PKEY_get1_RSA() is used
to fetch public exponent and modulus fields. On printing the same
certificate using OpenSSL command the public exponent and public
modulus values are 65537
On Tue, May 24, 2011 at 12:05 AM, ciphertexto wrote:
> On May 23, 2011, at 7:20 PM, Dr. Stephen Henson wrote:
>> On Sun, May 22, 2011, Bill Durant wrote:
>>
>>> Hello,
>>>
>>> Has anyone been able to build a "working" 64-bit version of the
>>> FIPS-capable OpenSSL on Mac OS X 10.6.7 (SnowLeopard
Hello,
Does any one know how can any application work 100% reliably with a
FIPS-capable OpenSSL given the following requirement from page 33 of the
OpenSSL UserGuide at http://www.openssl.org/docs/fips/UserGuide.pdf:
===
"The standard OpenSSL build with the fips option will use a ba
On May 23, 2011, at 7:20 PM, Dr. Stephen Henson wrote:
> On Sun, May 22, 2011, Bill Durant wrote:
>
>> Hello,
>>
>> Has anyone been able to build a "working" 64-bit version of the FIPS-capable
>> OpenSSL on Mac OS X 10.6.7 (SnowLeopard)?
>>
>> I have built a 64-bit version of the fipscanister
Solaris has a buggy tar. You need to use gnu tar.
-Kyle H
On Mon, May 23, 2011 at 3:11 PM, Ruiyuan Jiang wrote:
Hi, all
Has anyone had problem with openssl-fips-1.2.3.tar.gz? When I tried to “tar
xvf” on my Solaris 10 SPARC, the source had error message “unexpected EOF”.
I have tried with
On Sun, May 22, 2011, Bill Durant wrote:
> Hello,
>
> Has anyone been able to build a "working" 64-bit version of the FIPS-capable
> OpenSSL on Mac OS X 10.6.7 (SnowLeopard)?
>
> I have built a 64-bit version of the fipscanister from openssl-fips-1.2.3 on
> Mac OS X 10.6.7.
>
> But fips_shat
On 5/23/2011 1:59 AM, Harshvir Sidhu wrote:
David,
So are you suggesting that i change the approach in my Code.
Hard for me to give you a useful answer without seeing your code. If
your code tries to treat OpenSSL as a filter, expecting input and output
to correlate, then yes. If your cod
or ... keep it simple and at least consider using stunnel. I have a
LOT of applications using openssl, 3/4 I just use stunnel and forget
about it. For a few when I need to do crazy things, I code and link
in to my application. But you can save a lot of trouble with
stunnel, at least as a fir
actually I would seriously recommend you read the OpenSSL book written by
Eric Rescorla, it discusses all the use cases of openssl, BIO, async/sync
usages..so that you get an idea of how OpenSSL itself works.
On Mon, May 23, 2011 at 6:02 PM, Neo Liu wrote:
> I think you can read this article and
I think you can read this article and it will be help.
http://www.lenholgate.com/blog/2002/11/using-openssl-with-asynchronous-sockets.html
On Mon, May 23, 2011 at 4:59 PM, Harshvir Sidhu wrote:
> David,
>So are you suggesting that i change the approach in my Code. My
> application is for Win
Try this -- you may have a space problem.
gunzip -c openssl-fips-1.2.3.tar.gz | tar xvf
- (this uncompresses on the fly)
You also might have had a space problem when you downloaded and the
file is not complete, check the number of bytes against the ftp
severve
You might also consider using stunnel which works perfectly and is
easy to use in many cases and unless your volume is silly-high has
plenty of performance to run in inetd mode which is very
reliable. stunnel is based on openssl. It also makes your app
independent of SSL changes which I like.
On 23 May 2011, at 1:29 PM, Harshvir Sidhu wrote:
> Anyone any comments on this. Is openssl appropriate choice for my case?
As I understand it you want OpenSSL to handle the protocol and encryption, but
you don't want OpenSSL to do any network I/O itself: you want to do that (via
the C# sockets
Oh -- if you like being efficient and not wasting disk space this works nicely:
gunzip -c openssl-fips-1.2.3.tar.gz | tar xvf -
This will uncompress on the fly and leave the compressed file.
At 03:21 PM 5/23/2011, Eric S. Eberhard wrote:
You need to:
gunzip openssl-fips-1.2.3.tar.gz
That wi
Hi, Eric
That is what I did exactly and failed on "tar xvf" and I don't have problem
with 1.2.2.
Ryan
-Original Message-
From: owner-openssl-us...@openssl.org [mailto:owner-openssl-us...@openssl.org]
On Behalf Of Eric S. Eberhard
Sent: Monday, May 23, 2011 6:22 PM
To: openssl-users@ope
You need to:
gunzip openssl-fips-1.2.3.tar.gz
That will create openssl-fips-1.2.3.tar
Then tar -xvf openssl-fips-1.2.3.tar
Eric
At 03:11 PM 5/23/2011, Ruiyuan Jiang wrote:
Hi, all
Has anyone had problem with openssl-fips-1.2.3.tar.gz? When I tried
to "tar xvf" on my Solaris 10 SPARC, the
Hi, all
Has anyone had problem with openssl-fips-1.2.3.tar.gz? When I tried to "tar
xvf" on my Solaris 10 SPARC, the source had error message "unexpected EOF". I
have tried with different proxy servers and direct download from the site but
had no luck. I now downloaded v1.2.2 and no problem wit
I have discussed that with my team, we only have to use OpenSSL, SSAPI has
been ruled out for our work.
// Harshvir
On Mon, May 23, 2011 at 3:56 PM, John R Pierce wrote:
> On 05/23/11 1:59 AM, Harshvir Sidhu wrote:
>
>> So are you suggesting that i change the approach in my Code. My
>> applic
On 05/23/11 1:59 AM, Harshvir Sidhu wrote:
So are you suggesting that i change the approach in my Code. My
application is for Windows and in Managed C++. In that i am using
Callback function for receive, when the callback function is called,
and when i call SSL_read in that, it hangs at recv
Anyone any comments on this. Is openssl appropriate choice for my case?
// Harshvir
On Mon, May 23, 2011 at 3:59 AM, Harshvir Sidhu wrote:
> David,
>So are you suggesting that i change the approach in my Code. My
> application is for Windows and in Managed C++. In that i am using Callback
>
Hello,
Has anyone been successful at calling FIPS_mode_set() from a 64-bit application
on SnowLeopard?
I have a one-line app that uses the 64-bit version of a FIPS-capable OpenSSL
but it core dumps when I call FIPS_mode_set(). The core dump occurs in
EVP_SignFinal().
If this is working fo
If this isn't resolved yet, can you post the contents of the old cert, new
cert and the user cert?
-Sandeep
On Fri, May 20, 2011 at 8:33 PM, Alex Bergmann wrote:
> Hi Erwann!
>
> On 05/19/2011 10:20 AM, Erwann ABALEA wrote:
>
> "old" end-user certificates can only be verified by the "old" CA
>
Hi,
Try:
EVP_PKEY *pkey = X509_get_pubkey(cert);
rsa_public_key = EVP_PKEY_get1_RSA(pkey);
Cheers
Christian
On Mon, May 23, 2011 at 06:41:34PM +0530, Vinay Kumar wrote:
> Hi All,
>
> I am trying to print *public modulus* and *public exponent* from a *X509
> certificate*. The code
Hi All,
I am trying to print *public modulus* and *public exponent* from a *X509
certificate*. The code snippet is as follows:
modulus_and_exponent(X509 *cert) {
RSA *rsa_public_key = NULL;
if(cert->cert_info->key->pkey){
rsa_public_key = EVP
David,
So are you suggesting that i change the approach in my Code. My
application is for Windows and in Managed C++. In that i am using Callback
function for receive, when the callback function is called, and when i call
SSL_read in that, it hangs at recv call in the OpenSSL code, my assumption
Thanks. Finally got an opportunity to reboot the machine and install
the new OpenSSL. This patch works correctly for me.
Thanks,
Justin
On 08/05/11 19:02, Michael Tüxen wrote:
On May 7, 2011, at 11:14 PM, Justin Schoeman wrote:
Michael Tüxen wrote:
On May 7, 2011, at 10:40 PM, Justin Scho
During the load run of the product on win2k8-R2, it keeps crashing after
few minutes in OpenSSL 1.0.0.0d with the below call stack of release
binary.
We are also using the same OpenSSL for other 32 bit platforms (RHEL,
Sparc) too and no issue there.
> libeay32.dll!SHA1_Update(SHAstate_st *
27 matches
Mail list logo