Hello,
I'm using the OpenSSL library for a HTTP proxy. I want to verify the server's
certificates and I use the verify-callback for this.
This works without problems.
My question is:
Is it possible to get the depth of the whole certificates chain in the verify
function? I know, that I can get
Hi Erik,
I still can connect via TLS1.1
I try:
OpenSSL version
OpenSSL 1.0.1b 26 Apr 2012
OpenSSL
OpenSSL s_server -no_ssl2 -no_ssl3 -no_tls1 -no_tls1_1 -accept 636 -debug -msg
-state -cert e:\OpenSSL\c-examples\server_rsa.pem -cipher RSA
Enter pass phrase for
Hi Erik,
I noticed that I'm using version 1.0.1a in my app and version 1.0.1b for the
s_client
I have updated both to 1.0.1c and everything works fine now.
Thanx.
Mit freundlichen Grüßen/Regards
Gerhard Jahn
Tel.: +49 (89) 636-44657
Fax: +49 (89) 636-45860
mailto:gerhard.j...@atos.net
Hi:
I am a newbie to openssl, and i hope to cross compile openssl under the
specific embedded system.
The problem come to me is how to modify the configure to make it. Still I
don't know which
list or item in configure needed to be modified to make it can run under
specified platform.
If there any
Hello,
Looking at *crypto/sha/asm/sha1-x86_64.pl*, there is a measurement that
states 5.3 cycles / byte when computing the sha1.
How was this measurement obtained? I tried using linux perf tools and
got close to this figure but I am not sure if I am performing the
correct test.
Thanks,
Amit
Charles Mills charlesm@... writes:
Is the firewall possibly blocking traffic to or from the server? SSL
handshake has read 0 bytes sounds like that is a possibility. Can other
applications (some e-mail client, I suppose) connect to imap.gmail.com:993?
Yes, I think the firewall is blocking
I captured the debug output using same values for CAfile, key and cert
to a tomcat server with TLS enabled.
http://pastebin.com/hAqK2rGM
The error with both OpenSSL 1.0.0e 6 Sep 2011 and OpenSSL 1.0.1c 10 May
2012 is:
3076311816:error:14094438:SSL routines:SSL3_READ_BYTES:tlsv1 alert
internal
Hi:
I am a newbie to openssl, and I try to cross compile openssl.
However, I still have no idea of how to make it, which file like configure
to modify,
and which item or list in it needed to be note or add;
If any document or instruction about that, thanks a lot.
--
View this message in
Hi all,
is there an API call that allows to extract an RSA public key (out of an
RSA structure) or should I just access rsa-n and rsa-e directly? I
cannot find an API call RSA_* that gives me the public key, but the
documentation (http://www.openssl.org/docs/crypto/rsa.html) says one
should not
I guess I just got it if the only way is to use the PEM API?
Hi all,
is there an API call that allows to extract an RSA public key (out of an
RSA structure) or should I just access rsa-n and rsa-e directly? I
cannot find an API call RSA_* that gives me the public key, but the
documentation
When I come through my verify_callback routine, I get called successively with
descending certificate depths: the first time through
X509_STORE_CTX_get_error_depth() is 1 and the second time it is 0. So it would
seem to me that the depth/length of the whole chain is available as the value
of
Am 03.09.2012 17:55, schrieb Charles Mills:
When I come through my verify_callback routine, I get called successively
with descending certificate depths:
the first time through X509_STORE_CTX_get_error_depth() is 1 and the second
time it is 0.
So it would seem to me that the depth/length of
Hi all,
I try to send an RSA public from one entity to another using socket
BIOs. I use PEM_write_bio_RSA_PUBKEY and PEM_read_bio_RSA_PUBKEY to do
that. I also tried with PEM_{write|read}_bio_RSAPublicKey. Both have the
same behaviour in my case. The write function seems to work just fine. I
From: owner-openssl-us...@openssl.org On Behalf Of Carolin Latze
Sent: Monday, 03 September, 2012 13:39
I try to send an RSA public from one entity to another using socket
BIOs. I use PEM_write_bio_RSA_PUBKEY and PEM_read_bio_RSA_PUBKEY to do
that. I also tried with
From: owner-openssl-us...@openssl.org On Behalf Of Carolin Latze
Sent: Monday, 03 September, 2012 10:48
I guess I just got it if the only way is to use the PEM API?
Hi all,
is there an API call that allows to extract an RSA public key (out of an
RSA structure) or should I just access
15 matches
Mail list logo