Hi Marek.,
Thanks once again for the detailed response..
Me now have a few more doubts..
Does this read_mac_secret and write_mac_secret change with
Every md5 hash verification?
I am not able to locate the code which actually updates this tcp
Seq numbers and so on..what does this hash_update
Hello,
Marek Marcola wrote:
For example:
/* check socket error state - only if val == 0 after this call
* connection is properly established.
*/
len = sizeof(int);
if (getsockopt(fd, SOL_SOCKET, SO_ERROR, (void *) state, len) 0) {
goto err;
Hello,
Does this read_mac_secret and write_mac_secret change with
Every md5 hash verification?
No, this values are calculated from pre_master_secret and until
end or renegotiation stays the same.
I am not able to locate the code which actually updates this tcp
Seq numbers and so on..what
Marek,
There seems to be no such function in openssl
(ssl3_record_sequence_update())!!
Can you pls tell where exactly this SSL sequence number is updated.
Thanks
--Gayathri
-Original Message-
From: [EMAIL PROTECTED]
[mailto:[EMAIL PROTECTED] On Behalf Of Marek Marcola
Sent: Monday,
Hello,
There seems to be no such function in openssl
(ssl3_record_sequence_update())!!
Can you pls tell where exactly this SSL sequence number is updated.
Well, yes, this function was introduced in 0.9.8.
In earlier versions there is code at the and of ssl3_mac()
function in s3_enc.c file which
Hello,
In earlier versions there is code at the and of ssl3_mac()
function in s3_enc.c file which looks like:
And for TLS1 version this code is at the end of tls1_mac()
function in t1_enc.c file.
Best regards,
--
Marek Marcola [EMAIL PROTECTED]
Thanks Marek..appreciate ur help..
-Original Message-
From: [EMAIL PROTECTED]
[mailto:[EMAIL PROTECTED] On Behalf Of Marek Marcola
Sent: Monday, July 24, 2006 4:04 PM
To: openssl-users@openssl.org
Subject: RE: Query On SSL Processing
Hello,
There seems to be no such function in openssl
Hi again,
Ok I had been trying to write some functions to encrypt/decrypt strings
using AES and was using AES_encrypt/decrypt But it would appear that
this is the hard way to do it and have heard numerous recommendations to
instead use the EVP API, but I have found minimal examples on how to do
But it
would appear that
this is the hard way to do it and have heard
numerous recommendations to
instead use the EVP API, but I have found minimal
examples on how to do
this. Does anyone have some sample code?? And also I
I had sent one few days ago. I am sending it again.
HTH,
Girish
GREAT!!!,
Sorry the attachment didn't make it last time, But I got it now this is
exactly what I was looking for
Thanks,
AJ
-Original Message-
From: [EMAIL PROTECTED]
[mailto:[EMAIL PROTECTED] On Behalf Of Girish
Venkatachalam
Sent: Monday, July 24, 2006 12:15
To:
It's not yet finished, but i've done some tests and
they are sucessfull...
Thank you for this hint.
--- Richard Salz [EMAIL PROTECTED] a écrit :
There is no pre-existing way to write out all the
SSL state so that
another process can reconstruct it.
I would do it this way; when a
Hi,
I am running openssl 0.9.8. I have code to verify signature The code works fine on about every major Unix platform. However, they are all 32-bit platforms. When I tried to run it on Suse Linux x86-64 machines it failed.
I haveset my target to linux-x86_64 and turned offassembly with no_asm
I'm not sure about 0.9.8 yet, but 0.9.7d works well on the
x86_64 platforms.we use no_asm no_idea no_rc5 threads
shared. what exactly is the failure?
Dave McLellan --Consulting Software
Engineer - SPEA Engineering EMC Corporation 228 South St. Mail Stop: 228 LL/AA-24 Hopkinton, MA 01748
Hello,
I have openssl installed on a Solaris machine. I have logged in as a root
user. I goto /usr/local/ssl/bin and try to run openssl command. It gives me
this error:
openssl: not found.
Is there any environment variable or anything else to be set ?
Any help on this?
Thank you
Deval
My error, to be exact, came from an xmlsec signature check call on a SAML token. Xmlsec is also freeware. Most feedback I got from other lists appeared to point the problem at openssl.
I am sure 0.9.7d works fine. In fact both Redhat and Suse released RPMs on openssl for 64 bit machines up to
Deval,
--- DEVAL SHAH [EMAIL PROTECTED] wrote:
Hello,
I have openssl installed on a Solaris machine. I
have logged in as a root
user. I goto /usr/local/ssl/bin and try to run
openssl command. It gives me
this error:
openssl: not found.
How was it installed? Was it installed already or
If you installed it to /usr/local/ssl/bin, and you have changed
directory to /usr/local/ssl/bin, then the most likely scenario is that
you do not have . in your $PATH.
I consider it a security risk to have the current directory in your
path; in this case, the best way to execute it would be to
-- Kyle Hamilton [EMAIL PROTECTED] wrote:
If you installed it to /usr/local/ssl/bin, and you
have changed
directory to /usr/local/ssl/bin, then the most
likely scenario is that
you do not have . in your $PATH.
I consider it a security risk to have the current
directory in your
path; in
Hello,
how can I view the information that are contained in a CSR, KEY or
CRT-file? E.g. for which hostname a cert is issued, when it will expire,
who is the company it is issued for ...
Regards
Marten
__
OpenSSL Project
--- Marten Lehmann [EMAIL PROTECTED] wrote:
Hello,
how can I view the information that are contained in
a CSR, KEY or
CRT-file? E.g. for which hostname a cert is issued,
when it will expire,
who is the company it is issued for ...
man x509
For eg,
$ openssl x509 -text -noout -in
Hi Marten,
how can I view the information that are
contained in a CSR, KEY or CRT-file? E.g. for which hostname a cert is
issued, when it will expire, who is the company it is issued for
...
The CSR file information
can be viewed using the following command line options
# openssl req
21 matches
Mail list logo