r. Stephen Henson
> Sent: Thursday, July 21, 2016 3:00 PM
> To: openssl-users@openssl.org
> Subject: Re: [openssl-users] Help finding replacement for
> ASN1_seq_unpack_X509
>
> On Thu, Jul 21, 2016, Jim Carroll wrote:
>
> > Steve,
> >
> > I ran into problems with
On Thu, Jul 21, 2016, Jim Carroll wrote:
> Steve,
>
> I ran into problems with swig when I tried to deploy you suggestion. Your
> solution was slick pre-processor magic's and I was having difficulty
> reversing the magic to troubleshoot swig (and I was a little shy about
> admitting I didn't un
On Thu, Jul 21, 2016, Jim Carroll wrote:
>
> I ran into problems with swig when I tried to deploy you suggestion. Your
> solution was slick pre-processor magic's and I was having difficulty
> reversing the magic to troubleshoot swig (and I was a little shy about
> admitting I didn't understand yo
ssl-users [mailto:openssl-users-boun...@openssl.org] On
> Behalf Of Dr. Stephen Henson
> Sent: Thursday, July 21, 2016 9:53 AM
> To: openssl-users@openssl.org
> Subject: Re: [openssl-users] Help finding replacement for
> ASN1_seq_unpack_X509
>
> On Wed, Jul 20, 2016, Jim Carroll wrote:
> Actually that is including a SEQUENCE header and not just the DER blobs. So if
> the result must be compatible with the original format the snippet I
> suggested would be appropriate here.
Thanks for the correction.
--
openssl-users mailing list
To unsubscribe: https://mta.openssl.org/mailman/
On Thu, Jul 21, 2016, Salz, Rich wrote:
>
> > STACK_OF(X509)* stack = sk_x509_new_null();
> > sk_x509_push(stack, cert);
> > sk_x509_push(stack, ca);
> >
> > return ASN1_seq_pack_X509(stack, i2d_X509, NULL, len_out);
>
> Okay, so your just pushing two DER-format
On Wed, Jul 20, 2016, Jim Carroll wrote:
> Thanks muchI have a corollary question if you don't mind. In OpenSSL
> 1.1.0, what is the accepted procedure to convert a STACK_OF(X509) to DER?
>
It depends on what you mean by "to DER" and what the other ends is expecting.
The code snipped I sug
> Thanks Rich!
You're welcome. Getting M2Crypto moved to 1.1 is a *great* project. Thanks.
--
Senior Architect, Akamai Technologies
IM: richs...@jabber.at Twitter: RichSalz
--
openssl-users mailing list
To unsubscribe: https://mta.openssl.org/mailman/listinfo/openssl-users
Thanks Rich!
> -Original Message-
> From: openssl-users [mailto:openssl-users-boun...@openssl.org] On
> Behalf Of Salz, Rich
> Sent: Thursday, July 21, 2016 8:57 AM
> To: openssl-users@openssl.org
> Subject: Re: [openssl-users] Help finding replacement for
>
> STACK_OF(X509)* stack = sk_x509_new_null();
> sk_x509_push(stack, cert);
> sk_x509_push(stack, ca);
>
> return ASN1_seq_pack_X509(stack, i2d_X509, NULL, len_out);
Okay, so your just pushing two DER-format blobs one after the other.
Yes, what you thought
eturn ASN1_seq_pack_X509(stack, i2d_X509, NULL, len_out);
}
The ASN1_seq_pack_X509 was a macro -- and has been removed.
> -Original Message-
> From: openssl-users [mailto:openssl-users-boun...@openssl.org] On
> Behalf Of Salz, Rich
> Sent: Thursday, July 21, 2016 4:35 AM
> To:
> Would it be acceptable to just iterate the stack elements, passing each X509
> through i2d_X509 and appending the results -- would that generate valid
> DER?
Maybe. It depends on what the receiver is expecting. If it's willing to read
a set of certs until it hits EOF (or equivalent) that's fi
valid DER?
Is there a better way?
> -Original Message-
> From: openssl-users [mailto:openssl-users-boun...@openssl.org] On
> Behalf Of Dr. Stephen Henson
> Sent: Tuesday, July 19, 2016 6:10 PM
> To: openssl-users@openssl.org
> Subject: Re: [openssl-users] Help
On Tue, Jul 19, 2016, Jim Carroll wrote:
> OpenSSL 1.1.0 has upgraded the safestack.h macro system, but I'm having
> difficulty understanding the changes. I'm porting a piece of code from
> OpenSSL 0.9.8 that uses ASN1_seq_unpack_X509. In 0.9.8, safestack.h had this
> definition.
>
> #define ASN1
OpenSSL 1.1.0 has upgraded the safestack.h macro system, but I'm having
difficulty understanding the changes. I'm porting a piece of code from
OpenSSL 0.9.8 that uses ASN1_seq_unpack_X509. In 0.9.8, safestack.h had this
definition.
#define ASN1_seq_unpack_X509(buf, len, d2i_func, free_func) \
15 matches
Mail list logo