Hi all,
Im trying to add a custom Extension to a CSR using openssl API's:
struct stack_st_X509_EXTENSION *exts = NULL;
X509_EXTENSION *ex;
exts = sk_X509_EXTENSION_new_null();
ASN1_OCTET_STRING *os = ASN1_OCTET_STRING_new();
nid = OBJ_create(1.3.6.1.4.1.12345, End Entry Type, My End
I am facing the same issue on openssl-1.0.1e
Is there any workaround for it ?
--
View this message in context:
http://openssl.6102.n7.nabble.com/SSLv3-handshaking-fails-on-solaris-tp9216p47447.html
Sent from the OpenSSL - User mailing list archive at Nabble.com.
Hi,
We need to send CN attribute in TeletexString format for ASN1DN Id and
certificate.
Does openssl support for TeletexString/ T61String(T61String, an arbitrary
string of T.61 (eight-bit) characters.) ?
What are function user to read the T61String format value ?
Could someone help me with
Ø We need to send CN attribute in TeletexString format for ASN1DN Id and
certificate.
'grep -I t61 apps/*.c' might be useful.
/r$
--
Principal Security Engineer
Akamai Technology
Cambridge, MA
OpenSSL supports T61String data type, but doesn't provide any conversion
helper.
You should avoid T61String if you can, the T.61 standard that defined it
has been withdrawn before 1993.
So unless you're playing with antique software that can't work with an
UTF8 string, prefer UTF8String.
--
hi!
I'm in trouble to use X509_verify and X509_CRL_verify function.
i create a certificate,then sign it and verify it. Sometimes I would get
verify failure when I repeat that.
i checked the public key and the private key were both correct.
the error strings:
error:0407006A:rsa
Hi,
I am dealing with a CA certificate bundle, similar to this one:
https://github.com/twitter/secureheaders/blob/master/config/curl-ca-bundle.crt,
like the example, the one I am dealing with was automatically generated
from mozilla's certdata.txt.
Consider the certificate labelled Bogus
Hi,
I am dealing with a CA certificate bundle, similar to this one:
https://github.com/twitter/secureheaders/blob/master/config/curl-ca-bundle.crt,
like the example, the one I am dealing with was automatically generated
from mozilla's certdata.txt.
Consider the certificate labelled Bogus
Bonjour,
Le 25/11/2013 17:14, Sassan Panahinejad a écrit :
I am dealing with a CA certificate bundle, similar to this one:
https://github.com/twitter/secureheaders/blob/master/config/curl-ca-bundle.crt,
like the example, the one I am dealing with was automatically
generated from mozilla's
Hi Erwann,
Thanks for your response. I'm sorry my question wasn't clearly defined (it
was will this file work correctly? If so, why?), but you seem to have
answered nonetheless, thank you.
As a followup question, is there a way to include these certs in the way
originally intended by the mozilla
Excellent, just what I was looking for and incidentally a source I can cite
to my client. Many thanks!
On 25 November 2013 17:24, Ralph Holz ralph-devn...@ralphholz.de wrote:
Hi,
Thanks for your response. I'm sorry my question wasn't clearly defined
(it was will this file work correctly?
FYI:
An RSA cipher algorithm is not a block cipher. It treats the entire
message as a very big integer. The better way is to use the RSA
cipher algorithm to transmit some symmetric cipher key for AES or
another block cipher algorithm and use the block cipher to encrypt
and decrypt very big
From: owner-openssl-users On Behalf Of Danyk
Sent: Monday, November 25, 2013 07:26
Im trying to add a custom Extension to a CSR using openssl API's:
I assume you know 'req' can be configured to create custom extensions
(if a bit clumsily) but you have reasons for coding it yourself instead.
Is there a way to see something like AES128-SHA is okay with TLSv1.2, but not
with SSLv3?
--
Principal Security Engineer
Akamai Technology
Cambridge, MA
14 matches
Mail list logo
