Davy Durham wrote:
Hello Davy,
Can openssl be given an SSL cert and a list of trusted root CAs' certs
and it just output the root CA's cert that goes with (signed) that SSL
cert?
This is not implemented in the openssl command.
With some own programming it would be possible.
Or is it a
Jason Haar [EMAIL PROTECTED] a écrit :
Julien VEHENT wrote:
I don't want to use HTTP just because web server are to much
attacked. Moreover,
OCSP is very interesting for the student that i am :)
OK so if i use a boring script which request 100 serial in one
line, what is
the correct syntax
What I think is as its the application's responsibility to retry
the same openssl operation whenever it receives a WANT_READ or
WANT_WRITE, why cant we simply overwrite the buffer that is passed
to say SSL_write with the next payload that needs to be sent when we hit
that error code, in this
Hi,
I've been playing with 0.9.8 and have gotten my engine to load as a
.so from the engines directory, which is excellent.
Now I'm trying to use the config feature to find and load this
engine and I'm not having much luck. Here's my config file:
openssl.cnf
openssl_init =
Hi,
I'm trying to verify a certificate-chain including CRLs.
To do this I'm pushing all certs (of the type X509)
on a STACK_OF(X509) by sk_X509_push(cert_stack, current_cert);
the trusted root-CA-cert is in CA_DIR
The following code is working fine (in the non-reduced version ;-) ),
but I have
Angel Martinez Gonzalez wrote:
Hello:
I wrote a BIGNUM into a file using the function:
int BN_print_fp(FILE *fp, const BIGNUM *a);
But, How I can read this bignum from this file?. I don´t know a openssl
function to read a bignum from a file.
read it into memory and use BN_hex2bn
Kent Yoder wrote:
Hi,
I've been playing with 0.9.8 and have gotten my engine to load as a
.so from the engines directory, which is excellent.
Now I'm trying to use the config feature to find and load this
engine and I'm not having much luck. Here's my config file:
openssl.cnf
BINGO... thanks Nils...
Looks like dynamic_path and engine_id are somewhat interchangable;
having either finds my .so.
Kent
On 6/3/05, Nils Larsch [EMAIL PROTECTED] wrote:
Kent Yoder wrote:
Hi,
I've been playing with 0.9.8 and have gotten my engine to load as a
.so from the
Exactly what david says...
why would you want to risk data loss ??
Lokesh.
On 6/2/05, Gayathri Sundar [EMAIL PROTECTED] wrote:
Hi,
What I think is as its the application's responsibility to retry
the same openssl operation whenever it receives a WANT_READ or
WANT_WRITE, why cant we
Learning it the HARD way... :))
anyways...
doesn't matter if its 0.9.6 or later it should go non-blocking.
SSL_renegotiate_pending only checks if the handshake is succesfull by verifying
state flag in SSL structure. It doesnt deal with BIOs or TCP Buffers.
SSL_do_handshake enforces the REAL
10 matches
Mail list logo
