Hi,
This is an API question on using OpenSSL and AES GCM. I am successfully able to
perform encryption / decryption and I am also able to detect errors in the mac
value. The code I am using for this is below. I want to retrieve the mac value
to my own buffer, in addition to just doing the intern
As i see from demos (even such supposed to be tiny one as easy-tls or
bio/sconect) all files created are too big (my requirement are <=100kb
for binary and <=300kb more for all memory includding heap). Is it
possible to cut opensll in next ways:
1) use onle a few cypher algorithms and do not even c
Hi,
X509_STORE_add_cert() would add a certificate to the list of trusted
certificates in the ctx. What is the way to remove a certificate from this
trusted store? Am not finding any function to remove the certificate. Can
anyone of you suggest a way to remove the certificate from this trusted
stor
Hi all,
I've compiled openssl 0.9.8x on windows 7 using VS2010 pro using the
following steps:
perl Configure VC-WIN64A --prefix=%LIB_OUT%
CALL ms\do_win64a
nmake -f ms\ntdll.mak
nmake -f ms\ntdll.mak test
nmake -f ms\ntdll.mak install
Unfortunately the resulting libraries do not have any of the fo
> From: Serhiy Ivanov [mailto:serhiy.i.iva...@globallogic.com]
> Sent: Wednesday, January 09, 2013 12:03 PM
>
> Tried to turn off one cipher via:
> #!/bin/bash
> make clean && ./config -no-CAMELLIA-128-CBC && make depend && make
>
> But still cannot turn it off (as i see output of openssl
> list-
THANKS.
At first (or initially) i want to install the v1.0.1c as a second
(2nd) openssl in the system, so it does not replace the existing
openssl and start to create conflicts/fails with other base/core
components. And initially want to (at least) start creating/managing
cert with it manually, an
On 01/09/2013 02:55 PM, Bry8 Star wrote:
I am (still) looking for an OpenSSL 1.0.1c rpm
or srpm / src.rpm for CentOS 6.3 (32bit).
The Fedora 18 SRPM builds fine on RHEL 6.3, at least. I haven't checked
the result. Replacing such a central system component is always a bit
tricky.
--
Flori
It would be great to see/know what can be used to enable DANE
support in OpenSSL.
Those who are interested in bit more info on
DANE (and related) :
https://datatracker.ietf.org/wg/dane/
https://datatracker.ietf.org/doc/draft-ietf-dane-protocol/
http://www.internetsociety.org/articles/dane-taki
On Wed, Jan 9, 2013 at 10:42 AM, Jakob Bohm wrote:
> On 1/8/2013 7:59 PM, Jeffrey Walton wrote:
>>
>> On Tue, Jan 8, 2013 at 1:14 PM, Carson Gaspar wrote:
>>>
>>> On 1/8/13 9:52 AM, Jeffrey Walton wrote:
...
>>
>> OT: Do you think the tools will ever catch up?
>>
>> Autoconf and friends
On 1/8/2013 7:59 PM, Jeffrey Walton wrote:
On Tue, Jan 8, 2013 at 1:14 PM, Carson Gaspar wrote:
On 1/8/13 9:52 AM, Jeffrey Walton wrote:
That seems like a really odd requirement. Is there any reading on the
topic?
man nsswitch.conf
Generally, I prefer static linking in high integrity soft
On 1/9/2013 2:46 PM, Bry8 Star wrote:
(reposting this on users list)
Hi,
When can we expect an OpenSSL release, that will support DANE
protocol to verify SSL/TLS certificates (which are added/kept in the
DNS RR) using DNSSEC protocols ?
Is there an RFC for DANE, or is it still an experimental
I am (still) looking for an OpenSSL 1.0.1c rpm
or srpm / src.rpm for CentOS 6.3 (32bit).
If same version with fips module were downloadable,
that would have been great as well.
From Walter H., received on 2013-01-08 8:47 PM:
> Hello,
>
> is there an openssl RPM package with version 0.9.8 or be
(reposting this on users list)
Hi,
When can we expect an OpenSSL release, that will support DANE
protocol to verify SSL/TLS certificates (which are added/kept in the
DNS RR) using DNSSEC protocols ?
Thanks,
-- Bright Star (Bry8 Star / Bry8Star).
signature.asc
Description: OpenPGP digital signa
On Wed, Jan 9, 2013 at 7:02 AM, Serhiy Ivanov
wrote:
> Tried to turn off one cipher via:
> #!/bin/bash
> make clean && ./config -no-CAMELLIA-128-CBC && make depend && make
Try make dclean
Jeff
__
OpenSSL Project
Tried to turn off one cipher via:
#!/bin/bash
make clean && ./config -no-CAMELLIA-128-CBC && make depend && make
But still cannot turn it off (as i see output of openssl
list-cipher-algorithms or even
./apps/openssl list-cipher-algorithms for new compiled client). I
don't see way to really turn of
15 matches
Mail list logo