[openssl-users] R: openssl verify command doesn't work

2018-03-02 Thread CAMPETTO CLAUDIO
Thanks -Messaggio originale- Da: openssl-users [mailto:openssl-users-boun...@openssl.org] Per conto di Viktor Dukhovni Inviato: venerdì 2 marzo 2018 16:38 A: openssl-users@openssl.org Oggetto: Re: [openssl-users] openssl verify command doesn't work > On Mar 2, 2018, at 9:49 AM,

Re: [openssl-users] FIPS 140-2 key wrapping transition

2018-03-02 Thread Mark Minnoch
The OpenSSL FOM Cert. #1747 will not be moved to the CMVP Historical List since it does not implement a non-compliant AES key wrapping service in the defined cryptographic boundary. All of the FIPS modules that implement a non-compliant AES key wrapping service have already been moved to the

Re: [openssl-users] openssl verify command doesn't work

2018-03-02 Thread Viktor Dukhovni
> On Mar 2, 2018, at 9:49 AM, CAMPETTO CLAUDIO wrote: > > openssl verify -CAfile CATest2.cacert.pem -crl_check -crlfile > CATest2.crl.pem testrinnovo1_nuovo.pem > > usage: verify [-verbose] [-CApath path] [-CAfile file] [-trusted_first] > [-purpose purpose]

Re: [openssl-users] renegotiate across exec()

2018-03-02 Thread Felipe Gasper
> On Mar 2, 2018, at 12:44 AM, Viktor Dukhovni > wrote: > >> On Mar 1, 2018, at 10:39 PM, Felipe Gasper wrote: >> >> Hi all, >> >> I’ve got a project where I’m trying to send a Hello Request from the >> server immediately before an

[openssl-users] openssl verify command doesn't work

2018-03-02 Thread CAMPETTO CLAUDIO
openssl version openssl 1.0.2k-fips man verify VERIFY(1) OpenSSL VERIFY(1) NAME verify - Utility to verify

Re: [openssl-users] renegotiate across exec()

2018-03-02 Thread Salz, Rich via openssl-users
>I believe you're out of luck. I believe that OpenSSL does not support > migration of live connections between address spaces. Yeah, the closest you can come is using TLS sessions or tickets. -- openssl-users mailing list To unsubscribe:

[openssl-users] Assertion in ssl_free_wbio_buffer() fails after unfinished handshake since OpenSSL 1.1.0

2018-03-02 Thread Marcus . Schafheutle
Hello,   we encountered a strange behaviour of OpenSSL 1.1.0 when our test with "sslscan" provokes an unfinished  handshake.   Our asynchronous communication approach uses memory BIOs in order to read/write data from other  communication layers into the SSL object. After the read/write

Re: [openssl-users] compiling cups-1.4.3 w/ OpenSSL 1.10 && BIO_METHOD

2018-03-02 Thread Matt Caswell
On 01/03/18 12:07, Matthias Apitz wrote: > > Hello, > > Compiling cups-1.4.3 against OpenSSL 1.10 gives the following error: > > ... > Compiling http.c... > http.c:216: error: variable `http_bio_methods' has initializer but > incomplete type > > the code in question is: > > #if