Dear Sir/Madam,
I'm currently using Crypt::OpenSSL::RSA module with perl linking with OpenSSL
0.9.8h to encrypt/decrypt message and transport over HTTP POST request to Java
application on the other side. When Encrypting with the given public key, Java
application can receive the data
It was reported to me that one of our certificates is not verifying via
OCSP (it gets an 'unauthorized answer'), so I am trying to determine
what is causing that.
I grabbed one cert and the root bundle and did the following:
openssl ocsp -CA IPS-IPSCABUNDLE.CRT -issuer IPS-IPSCABUNDLE.CRT -cert
Hi Stephen. Thank you for your help!
Finally, I think I got it!
I could get all the signer certificates using the (undocumented) function
PKCS7_cert_from_signer_info.
My algorithm is the following:
1) Get all the PKCS7_SIGNER_INFO with PKCS7_get_signer_info
2) Loop through the
I got a problem with openssl, I need to get the digest of the next line in
UTF-8:
||A|1|2005-09-02T16:30:00|1|ISP900909Q88|Industrias del Sur Poniente, S.A.
de C.V.|Alvaro Obregón|37|3|Col. Roma Norte|México|Cuauhtémoc|Distrito
Federal|México|06700|Pino Suarez|23|Centro|Monterrey|Monterrey|Nuevo
Hello,
I try to set a X509v3 Authority Key Identifier extension with this
value :
keyid:6B:FC:14:20:72:EE:15:6E:D1:29:7A:4D:40:69:90:F7:AE:B1:3A:FF\nDirName:/O=O/OU=DC.OU/CN=.ROOT.CN/dnQualifier=a/wUIHLuFW7RKXpNQGmQ966xOv8=\nserial:01\0
With this code :
X509* _d_cert ; // loaded from a file
David,
Thanks for the quick reply.
David Schwartz wrote:
* the underlying socket is blocking
It sounds like you're trying to get some kind of fake halfway-non-blocking
operation. This never works quite right. Either use blocking operations on
blocking sockets or non-blocking operations on
Hello,
[EMAIL PROTECTED] wrote on 06/02/2008 07:44:26 PM:
I got a problem with openssl, I need to get the digest of the next line
in UTF-8:
||A|1|2005-09-02T16:30:00|1|ISP900909Q88|Industrias del Sur Poniente,
S.A. de C.V.|
Alvaro Obregón|37|3|Col. Roma Norte|México|Cuauhtémoc|Distrito
Notepad may save it with a Byte Order Mark (aka 'non-breaking
zero-width space') at the beginning. It may also not be saving it as
UTF-8, but rather UTF-16.
The better way to convert to UTF-8 is to use something like ICU
(International Components for Unicode, at http://icu-project.org/) to
Hello,
[EMAIL PROTECTED] wrote on 06/03/2008 04:40:10 AM:
Dear Sir/Madam,
I'm currently using Crypt::OpenSSL::RSA module with perl linking with
OpenSSL 0.9.8h to
encrypt/decrypt message and transport over HTTP POST request to Java
application on the
other side. When Encrypting with
Does anyone know of any substantial documentation/coding examples that may
be available (similar to the Networking with OpenSSL book) for using OpenSSL
as an OCSP Server/Responder as well as a requestor? Any help would be
appreciated!
Thanks,
Brian
I'm seeing weird OpenSSL behaviour and I suspect it's a bug in
the library.
It sounds like a typical protocol error.
The problem is that SSL_write() sometimes returns SSL_ERROR_SSL with
errno equal to EAGAIN.
This is your problem. You are confusing yourself by checking 'errno'.
SSL_write
No docs, but there is working code here:
https://www.openca.org/projects/ocspd/
Best,
Max
Quoting Brian Smith [EMAIL PROTECTED]:
Does anyone know of any substantial documentation/coding examples that may
be available (similar to the Networking with OpenSSL book) for using OpenSSL
as an
12 matches
Mail list logo