Maybe you could do with a select(). You test the return of select and
you will know if conection has been closed ;)
Milan Křápek a écrit :
Hi I have problem,
Is there any function in Openssl, that says me, that connection is active?? I create a new TCP connection with BIO_do_connect, it
I still have another question, how can I read the reference counter of a
SSL_SESSION object? If I can read it, I could know if another task is
using the SESSION. It could prevent me from deleting the pointer to the
SESSION.
Regards,
Alexis
Alexis Lefort a écrit :
Hello all,
I am doing
Hello all,
I am doing, in C language, a SSL client with openSSL 0.9.7g
I have multiple clients (about 10) using the same SSL_CTX and connecting
to 2 different servers. (5 clients on each for example).
I wonder how SSL_get_session, SSL_set_session ans SSL_SESSION_free have
to be used there.
, retain, copy, print, distribute or use
this message. If you have received this communication in error, please
notify the sender and delete all copies of this message. Persistent
Systems Pvt. Ltd. does not accept any liability for virus infected mails.
--
Alexis Lefort
Ingenieur departement
.
Alexis
Kaushalye Kapuruge a écrit :
Alexis Lefort wrote:
I found a source code in the openssl examples.
Could you please point me to a such :)
Thanks.
Ce message et toutes les pièces jointes sont confidentiels et établis a
l'intention exclusive de ses destinataires. Toute modification, édition
I will do so, thank you :)
Alexis
Dr. Stephen Henson a écrit :
Don't post in HTML.
Easiest option is to call d2i_PKCS12() and friends and see if you get an
error.
Steve.
--
Dr Stephen N. Henson. Email, S/MIME and PGP keys: see homepage
OpenSSL project core developer and freelance consultant.
I found a source code in the openssl examples.
But I still don't know how to test the type of the file (X.509 or
PKCS#12). Is there a mean to do so?
regards
Alexis
Alexis Lefort a crit:
I have now several other questions:
- does PKCS#12 files always have the ".p12"
anks again for your time and answers :)
regards
Alexis
Alexis Lefort a crit:
I want to do it progammatically, thanks a lot for help :)
regards
Alexis
Brad Hards a crit:
On Saturday 28 October 2006 01:58, Alexis Lefort wrote:
I can't find much information about parsing a P
Hi all,
I can't find much information about parsing a PKSC12 file, or testing
the content of a file to know if it is PEM or PKCS12.
Where could I find that please?
regards
--
Alexis Lefort
Ce message et toutes les pièces jointes sont confidentiels et établis a
l'intention exclusive de ses
Thanks for your reply :)
This is what I already do, and there is only one certificate in the file.
regards
Vincenzo Sciarra a écrit :
Try c_rehash in the certificate folder.
bye
2006/10/25, Alexis Lefort [EMAIL PROTECTED]:
Hi all,
I did a software that verifies the certificate
server certificate with a local
CA?
SSL_CTX_set_client_CA_list ()
Try to use
SSL_CTX_set_verify_locations()
You can specify file containing CA cert file
2006/10/26, Alexis Lefort [EMAIL PROTECTED]:
Thanks for your reply :)
This is what I
refuses to rename the file???
Vincenzo Sciarra a écrit :
Yes I'm sorry.
try this :
// SSL_CTX_set_client_CA_list (sslctx, SSL_load_client_CA_file (caList));
SSL_CTX_load_verify_locations (sslctx, /path/of/CA/cert/file, NULL);
2006/10/26, Alexis Lefort [EMAIL PROTECTED]:
There is no man
hu ho, the way I rename the file was bad, I omitted the firsts
characters if they were 0.
I feel just a little bit stupid sorry and thanks for your help :)
Alexis Lefort a écrit :
Yes, if I load the file it works, but I want it to work even if the
file is only in the directory.
I have just
Hello all again ;)
c_rehash does symbolic links to files containing certificates, but it
does only one link per file. If there are more than one certificate in a
file it will lead to problems for openssl because only one certificate
is alowed in renamed files.
It was just a little note to
th 1.
I do not understand!
regards
--
Alexis Lefort
Ce message et toutes les pièces jointes sont confidentiels et établis a
l'intention exclusive de ses destinataires. Toute modification, édition,
utilisation ou diffusion non autorisée est interdite. Tout message
électronique est susceptible d'altér
ing libssh in programming
in c, please somebody tell me, where can i find it.
O'Reilly: Secure Programming Cookbook for C and C++
It is not online and not free ...
but is very good and You will find there answers to your questions.
Worth to buy.
Best regards,
--
Alexis Lefort
No one can help me? :(
Alexis Lefort wrote:
I have forgotten one thing, the call to SSL_connect() returns "-1", and
SSL_get_error() returns SSL_ERROR_SYSCALL.
The error string is empty and errno is NULL.
Alexis Lefort wrote:
Hi list,
When my client (0.9
Hi list,
When my client (0.9.8a) tries to connect (SSL_connect) to an openssl
s_server(0.9.7g) (openssl s_server -cert server_cert.pem -key
server_priv_key.pem), the server crashes:
gethostbyname failure
0 items in the session cache
0 client connects (SSL_connect())
0 client
I have forgotten one thing, the call to SSL_connect() returns "-1", and
SSL_get_error() returns SSL_ERROR_SYSCALL.
The error string is empty and errno is NULL.
Alexis Lefort wrote:
Hi list,
When my client (0.9.8a) tries to connect (SSL_connect) to an "openssl
s
Hi all,
I am compiling OpenSSL for an ARM9, running RTEMS.
I do not know if I need the multi-threading support when I configure
OpenSSL. My software will execute several tasks each running OpenSSL,
but these tasks are not threads (At least I guess so).
So can I build OpenSSL with the no-thread
Hello all,
I develeopped a server which seems to work quite fine. When I use
Valgrind to check for problems, it returns me thousands of problems wich
seems to be caused by the OpenSSL librairie!
follows some of the returns:
==23622== Syscall param write(buf) points to uninitialised byte(s)
I have just tried the option -DPURIFY and unfortunately it does not
help. I still have hundreds of Conditional jump... and Use of
uninitialised value
Any other suggestion would be greatly appreciated. :)
Alexis
Nils Larsch a écrit :
Alexis Lefort wrote:
Hello all,
I develeopped
Hi all,
Is it possible for a Windows client using IE5.0 to authenticate itself
in order to connect to a SSL server?
My server works fine with many clients, but not with this one...
The great tool ssldump dumps that:
18 5 0.1324 (0.0295) CSV3.0(273) Handshake
Certificate
Thank you, I missed that!
BIOs don't need any special settings to support non blocking I/O: if the
underlying transport signals a call should be retried the BIO takes
appropriate action.
In other words you just have to set the underlying transport (socket normally)
to a non blocking mode.
Steve.
Hi all,
I have a problem with my handshake. When the server does not require the
client certificate, all works fine. But when it requires the client
certificate, It stops in the handshake and return me that error:
1:error:140890B2:SSL routines:SSL3_GET_CLIENT_CERTIFICATE:no certificate
Thanks a lot!
It seems to be what I was looking for.
:)
Mathias Brossard a crit:
On Tue, 2004-01-13 at 14:44, Alexis Lefort wrote:
Because of the very limited storage capacity of the flash memory, I'd
like to reduce the size of libraries. In order to do that, I tried
Hi all,
I am a newbie in OpenSSL and my job is to build a secured server
embedded on an ARM processor. The OS I am using is RTEMS and OpenSSL is
0.9.7c.
I have two questions.
Because of the very limited storage capacity of the flash memory, I'd
like to reduce the size of libraries. In order to
27 matches
Mail list logo