Hi all,
someone could help me?
I'm using openssl to generate certificates.
My steps are:
1) I generate a self signed certificate that I use as a CA
commands:
a)genrsa -out cakey.pem 1024
b)req -new -nodes -x509 -key cakey.pem -out ca.pem -days 1095
This certificate is V3.
2)I
Andrea,
You have to add the lines
x509_extensions = name_of_section
and
[name_of_section]
to your config file.
If you want to get an x.509v3 certificate without extensions, you can leave
the section empty. Otherwise you can specify your extensions to be used
here.
Regards
Thomas
First a question for you. Are you BASE64-encoding the buffer?
It's a modest pain but that encoding was designed to ensure
reliable transport of binary data between systems.
How? The decoder isn't affected by systems that convert a newline
into a carriage-return/newline (e.g., when you transfer
Please send me the snippet of the code to verify signed enveloped data .
1. I'm getting problem PKCS7_DataInit() returning NULL this function is
called just after the decode of stored signedenveloped data.
2. It's looking like cipher in decode data is NULL.
3. Is there any init OR any other
For some reason, the DES routines for CBC (Cipher Block Chaining)
mode:
DES_cbc_encrypt
DES_cbc_decrypt
do not appear to add the required PKCS#5 padding. Is their another
routine I should be using that works with the DES_key_schedule type?
Thanks in advance,
Alicia.
HEllo List,
I am trying to use a dynamic engine from opensc. This shall load a
module of a third party.
At the openssl command prompt everything works fine.
--snip--
OpenSSL engine dynamic -pre SO_PATH:/usr/lib/opensc/engine_pkcs11.so
-pre ID:pkcs11 -pre LIST_ADD:1 -pre LOAD -pre
On Sun, Nov 13, 2005, [EMAIL PROTECTED] wrote:
I am trying to make a C++ class to make encrytion and decrytion simple
using the blowfish algorithm with openssl. Anyways, I have modelled my
program around
http://www.linuxgazette.com/issue87/misc/vinayak/sym_funcs.c.txt which is
a C program
On Mon, Nov 14, 2005, Alicia da Conceicao wrote:
For some reason, the DES routines for CBC (Cipher Block Chaining)
mode:
DES_cbc_encrypt
DES_cbc_decrypt
do not appear to add the required PKCS#5 padding. Is their another
routine I should be using that works with the
Hello Steve,
Once again Thanks for your last solution (
Digest info ).
I have small doubt about ...
what can be the content type (part of Content info ) other than simple
data in Signed data.
Structure description
SignedData ::= SEQUENCE {
version
Please send me the snippet of the
code to verify signed enveloped data .
1. I'm getting
problem PKCS7_DataInit() returning NULL this function is called just after the
decode of stored signedenveloped data.
2. It's looking like cipher in decode signed enveloped data is
NULL.
3.
Hey all,
Is it possible to use openssl dgst to generate and verify digests in hex
format? I've been trying it for some time, and I can't figure it out.
I can generate the digest in hex format without any problem, but I can't
get it to verify (syntax examples below).
Generate the digest:
On Mon, Nov 14, 2005, Lloyd Brown wrote:
Hey all,
Is it possible to use openssl dgst to generate and verify digests in hex
format? I've been trying it for some time, and I can't figure it out.
I can generate the digest in hex format without any problem, but I can't
get it to verify
On Mon, Nov 14, 2005, Konark wrote:
Hello Steve,
Once again Thanks for your last solution ( Digest info ).
I have small doubt about ...
what can be the content type (part of Content info ) other than simple data
in Signed data.
The high level S/MIME routines
I have added the DH parameters and I know they are okay since regualr
DH sessions work. The problem is when switch RSA to DSA
On 11/14/05, Victor B. Wagner [EMAIL PROTECTED] wrote:
On 2005.11.14 at 08:08:07 +0200, Nadav Golombick wrote:
I am trying to perform a handshake using DSS cipher
Hello,
I am transferring a AES encrypted buffer by writing to a file in Windows
and then trying to decrypt the buffer from the transferred file in Linux.
Though i use the same key both sides, the decryption does not work.
I use the following:
windows 2000 professional with
Why don't you spin through the file in the two machines and determine if they
are (1) the eact same length and (2) if their contents match.
While I have not been doing openssl programming for a while I am a programmer
and that would the 1st thing I'd check. You should look for byte ordering as
Cornelius Koelbel wrote:
...
But I'd like to load the engine from the config file, so that I can add
the openssl command to a script.
--snip--
[ openssl_init ]
engines = engine_section
[ engine_section ]
pkcs11 = pkcs11_engine_section
[ pkcs11_engine_section ]
init= 1
Hi,
Here is something working fine in 0.9.7x but failing in 0.9.8 (as far as i have
tested it).
My engine name is zencod as you could see.
openssl_conf = openssl_init
[ openssl_init ]
# Extra OBJECT IDENTIFIER info:
#oid_file = $ENV::HOME/.oid
Hi,
When running the openssl with DSA certificates and DH parameter files,
I can't select the ciphers TLS_DH_DSS_WITH_AES_128_CBC_SHA and
TLS_DH_DSS_WITH_AES_256_CBC_SHA. All other options of DH and DSS work,
for example the DHE_DSS ciphers and DH_anon work fine.
Any ideas?
--
Nadav Golombick
Thanks a lot, I did read the doc's before, but was still confused. I did
it your proposed way now, and everything is working perfectly.
Thanks again
--
Matthew Clarkson
On Mon, 14 Nov 2005, Dr. Stephen Henson wrote:
On Sun, Nov 13, 2005, [EMAIL PROTECTED] wrote:
I am trying to make a C++
20 matches
Mail list logo