dear all
i'm a Msc student that uses NS3 simulator to do some researches. my target
for right now is to make a sample code for a client and a server then add
it to the simulator
as a brief
1-the client send a certificate request and the server send the certificate
to the client
2- the client
Hi,
Just chiming in to confirm your idea of using CMS_encrypt() on a BIO, then
CMS_sign(). That's what I ended up doing (cf. code I posted on StackOverflow at
the time[1]). If someone else knows a better approach though, I'm interested
too. Hopefully the overhead from BIO/CMS juggling will not
I'm on Ubuntu 14.04 with OpenSSL 1.0.1f 6 Jan 2014. I'm running the
following command from http://www.openssl.org/docs/apps/ciphers.html:
$ openssl ciphers -s -v 'ALL:@SECLEVEL=2'
Error in cipher list
139745373214368:error:140E6118:SSL
routines:SSL_CIPHER_PROCESS_RULESTR:invalid
On 15/11/14 18:06, Jeffrey Walton wrote:
I'm on Ubuntu 14.04 with OpenSSL 1.0.1f 6 Jan 2014. I'm running the
following command from http://www.openssl.org/docs/apps/ciphers.html:
$ openssl ciphers -s -v 'ALL:@SECLEVEL=2'
Error in cipher list
139745373214368:error:140E6118:SSL
You shouldn't need a separate library for the CAPI engine - it's built into the
OpenSSL library itself. Since you have a build of OpenSSL that has CAPI built
in, linking STunnel with it should suffice. If not, then that looks like a bug
in STunnel (i.e., it's not loading the engine correctly).
From: owner-openssl-us...@openssl.org On Behalf Of Kyle Hamilton
Sent: Friday, November 14, 2014 22:03
SSL_OP_* are bitmasks.
SSL_CTX_set_options(conn-ssl_ctx, SSL_OP_NO_SSLv2|SSL_OP_NO_SSLv3);
On 11/14/2014 12:37 AM, Vaghasiya, Nimesh wrote:
conn-ssl_ctx =
Your questions are confused and I don’t have time to read through a lot of
code, but:
In OpenSSL, type RSA (typedef struct rsa_st) is used for both/all RSA keys.
When you generate a new keypair, the RSA structure is filled with fields for
both private key and public key. If you use the