Hello,
We're using OpenSSl 1.1.1b on WIN64 and are facing a (rare but strange)
core-dump when doing the following:
After successful TLS1.3 handshake we're calling SSL_read() to get the first 2
Bytes of PDU data from the new connection (ASN.1 TAG + length).
SSL_read() returns 0
According to
You are right. Cannot create a certificate with CSR containing only public
key.
Thanks for the explanation.
--
Sent from: http://openssl.6102.n7.nabble.com/OpenSSL-User-f3.html
Hey,
Try calculating the private Key from the public key ;-)
but this can last a little time you don't have;
Walter
On Thu, September 12, 2019 09:50, Bharathi Prasad wrote:
> Hi,
> I have the public key of the client but not the private key.
> ...
>
> Regards,
> Bharathi
Hi,
Thanks for the prompt replies. I agree signature from private key should be
present in a CSR. However, as per RFC 2511, Proof Of Possession is optional
though it strongly recommends to have it.
I was able to create the CSR with only public key. I was unintentionally
adding an extra line at
The same build error is occurred by visual studio 2017 community edition.
Specified Configure options is VC-WIN64A and no-asm.
> From: openssl-users [mailto:openssl-users-boun...@openssl.org] On Behalf Of
> Osman Zakir
> Sent: Thursday, September 12, 2019 13:45
> I tried enabling both MD2 and RC5
Your previous note said "RC5 or MD4". Are you talking about MD2 or MD4?
> but I got linker errors when trying to build:
I tried enabling both MD2 and RC5 but I got linker errors when trying to build:
"
Creating library apps\openssl.lib and object apps\openssl.exp
speed.obj : error LNK2019: unresolved external symbol EVP_md2 referenced in
function EVP_Digest_MD2_loop
speed.obj : error LNK2019: unresolved external
Okay, I was able to build it and am running the tests now.
How do I know whether to enable RC5 or MD4, though? Which one do I enable?
Sorry if this is a stupid question. And what's "afalg" (in "test_afalf")?
On 12/09/2019 10:29, Fabrice Manfroi wrote:
> Hello,
>
> Trying to build the last 1.0.2t on Windows with Visual Studio 2010, I
> get the following build error:
>
> ===
>
> LIBEAY32.def : error LNK2001: unresolved external symbol OPENSSL_rdtsc
>
> ===
>
> If I remove the OPENSSL_rdtsc entry
On 12/09/2019 16:35, Fabrice Manfroi wrote:
> Hello,
>
> During a Windows build of the 1.1.1d version I found a typo in the
> crypto/threads_none.c source file.
Hi
This was recently fixed in git. See commit c3656cc594daa.
Matt
Hello,
During a Windows build of the 1.1.1d version I found a typo in the
crypto/threads_none.c source file.
In attachment a small patch which fix the problem.
Best Regards.
diff --git a/lib-na-openssl/src/crypto/threads_none.c b/lib-na-openssl/src/crypto/threads_none.c
index
On Thu, Sep 12, 2019 at 12:50:23AM -0700, Bharathi Prasad wrote:
> I have the public key of the client but not the private key. I am required
> to generate a CSR with only public key. I understand private key is required
> for Proof of Possession. However, as per my requirement I am supposed to
>
>I used CX509CertificateRequestCertificate class to create CSR with only
public key.
Those functions/classes/names/whatever are not part of OpenSSL.
The OpenSSL "req" command cannot process as CSR unless it is signed by the
private key. If you have a requirement to sign a CSR
If a CA signs a certificate without proof of possession of the private key,
the CA is enabling whoever does have that private key to look as though
they are the one who they sign the certificate for (i.e., impersonation).
The entire structure of PKI (the binding of the public half of a keypair to
I want to build OpenSSL for an x64 Windows 10 OS. I tried to configure it on
the Developer Command Prompt for VS 2019 by running "perl Configure VC-WIN64A",
but it gave me this error:
"
Can't locate Win32/Console.pm in @INC (you may need to install the
Win32::Console module) (@INC contains:
On Thu, 12 Sep 2019 10:31:51 +0200,
Dr. Matthias St. Pierre wrote:
>
> > > I think this is a problem with the 20-test_enc.t Test and not with
> > > OPENSSL.
> > >
> > > Can you please help me to fix the Test ?
> > >
> >
> > Did you enable zlib by any chance? If so it could be this:
> >
> >
Hello,
Trying to build the last 1.0.2t on Windows with Visual Studio 2010, I
get the following build error:
===
LIBEAY32.def : error LNK2001: unresolved external symbol OPENSSL_rdtsc
===
If I remove the OPENSSL_rdtsc entry from the util/libeay.num file it
works without any probleme.
Is it a
Yes Paul, you are right. Real CA must never accept CSR without verifying the
signature.
Francesco Petruzzi
Information Security Manager
Innovery SpA
Via Farini, 81 – 20159 Milano
Cell. +39 320 170 4978
Da: Paul Yang [mailto:kaishen...@alipay.com]
Inviato: giovedì 12 settembre 2019
Dare any CA proceed to sign a CSR without verifying the signature…
Maybe there are scenarios we are not aware about...
> On Sep 12, 2019, at 4:41 PM, Francesco Petruzzi
> wrote:
>
> Sign request with a fake private key and hope the client do not require
> signature verification.
>
> Regards
Sign request with a fake private key and hope the client do not require
signature verification.
Regards
Francesco Petruzzi
Da: openssl-users [mailto:openssl-users-boun...@openssl.org] Per conto di Paul
Yang via openssl-users
Inviato: giovedì 12 settembre 2019 09:51
A: Bharathi Prasad
Cc:
> > I think this is a problem with the 20-test_enc.t Test and not with OPENSSL.
> >
> > Can you please help me to fix the Test ?
> >
>
> Did you enable zlib by any chance? If so it could be this:
>
> https://github.com/openssl/openssl/issues/9866
>
> No resolution as yet.
>
> Matt
If you
On 12/09/2019 08:58, zahn wrote:
> Hello
>
> After building openssl-1.1.1d I run a Test and it failed:
>
> ../test/recipes/20-test_enc.t .. Dubious, test returned 1
> (wstat 256, 0x100)
>
> Test Summary Report
> ---
> ../test/recipes/20-test_enc.t
Hello
After building openssl-1.1.1d I run a Test and it failed:
../test/recipes/20-test_enc.t .. Dubious, test
returned 1 (wstat 256, 0x100)
Test Summary Report
---
../test/recipes/20-test_enc.t (Wstat: 256 Tests: 172
Failed: 1)
I used CX509CertificateRequestCertificate class to create CSR with only
public key.
--
Sent from: http://openssl.6102.n7.nabble.com/OpenSSL-User-f3.html
How could you create the CSR with only public key?
> On Sep 12, 2019, at 3:50 PM, Bharathi Prasad
> wrote:
>
> Hi,
> I have the public key of the client but not the private key. I am required
> to generate a CSR with only public key. I understand private key is required
> for Proof of
Hi,
I have the public key of the client but not the private key. I am required
to generate a CSR with only public key. I understand private key is required
for Proof of Possession. However, as per my requirement I am supposed to
create CSR only with public key and my CA would create a certificate.
26 matches
Mail list logo
