Optional Verification of Signature and Date..

Hi, I am a newbie user of openssl, and am using openssl C apis to verify certificates. Is there any way by which I can ignore the date verificationa and the signature verification? Thanks in advance. Regds, Ashok

Unable to set PSK ciphers for DTLS on Federa 13

I am unable to set the cipher "PSK-AES128-CBC-SHA" for my DTLS client code, even though its displayed when I run openssl ciphers command. I can also set this cipher without any problem when I run "openssl s_client" test tool. I get the following error during handshake :  error:140F80B5:SSL routin

key usage for certificates

Hi all, sorry for my bad english i'm don't speak very well. I subscribed here because i have a probably easy question for you. All is in the title. The fact is the notion of keyUsage in signed certficate is very hazy for me right now. Someone told me its purpose is just to legally "protect" the

Re: verify certificate in c

On Sat July 3 2010, Dr. Stephen Henson wrote: > On Sat, Jul 03, 2010, belo wrote: > > > > > Damn! > > how can be possible that in the official openssl documentation there's > > nothing about this OpenSSL_add_all_algorithms()?!?!?!? > > > > http://www.openssl.org/support/faq.html#PROG8 > The O

Re: verify certificate in c

On Sat, Jul 03, 2010, belo wrote: > > Damn! > how can be possible that in the official openssl documentation there's > nothing about this OpenSSL_add_all_algorithms()?!?!?!? > http://www.openssl.org/support/faq.html#PROG8 Steve. -- Dr Stephen N. Henson. OpenSSL project core developer. Commerci

Re: verify certificate in c

Damn! how can be possible that in the official openssl documentation there's nothing about this OpenSSL_add_all_algorithms()?!?!?!? that documentation sucks a lot! anyway thanks :) -- View this message in context: http://old.nabble.com/verify-certificate-in-c-tp29043989p29063450.html Sent fro

Large CRL Handling Problem

I have written a FIPS-1.1.2 compliant (OpenSSL 0.9.7m) application that validates certificates that are read in from files. It also loads the CA certificates and corresponding CRLs from files. I am trying to determine any limitations with loading large CRLs (~200-250 MB) and to characterize the r

Re: Compiling a native code using DES

Thanks a lot Mounir :-) On Sat, Jul 3, 2010 at 2:57 PM, Mounir IDRASSI wrote: > Hi, > > libcrypto is enough for basic cryptographic operations like > encryption/decryption with DES, AES, ...etc > > Cheers, > -- > Mounir IDRASSI > IDRIX > http://www.idrix.fr > > > Hello all, > > > > I have a C Cod

Re: verify certificate in c

Hi, Just add a call to *OpenSSL_add_all_algorithms* at the beginning of your main and the certificate verification will be OK. Cheers, -- Mounir IDRASSI IDRIX http://www.idrix.fr > > Hi, I'm a newbie user of OpenSSL. > I want to create a simple C program that verify a certificate chain like > th

Re: Compiling a native code using DES

Hi, libcrypto is enough for basic cryptographic operations like encryption/decryption with DES, AES, ...etc Cheers, -- Mounir IDRASSI IDRIX http://www.idrix.fr > Hello all, > > I have a C Code which is making use of DES.h in a JNI Environment. > I wanted to know if compiling this code with libcr

Re: Slow crypto initialization.

Don't be sorry, this is great work!! I'm glad the culprit has been found (and fixed)! BTW: To help the OpenSSL core team help track and fix this, it would be good to submit your message + patch to r...@openssl.org so it ends up as an issue ticket in the tracker and this material does not disappear