Gald to hear that your issue is resolved now. U may do well to take a
look at the ssl examples that comes along with the package that you
build.
-Original Message-
From: owner-openssl-us...@openssl.org
[mailto:owner-openssl-us...@openssl.org] On Behalf Of Irfan Gulamali
Sent: 20 July 2009
I'm in the process of writing an application that signs binary data for
loading
onto a Analog Devices BlackFin microprocessor. These chips have built in
support for verification of code. The chip gets loaded with the EC
public key,
and then you just update the code and signature on every
On Mon, Jul 20, 2009 at 09:51, Fred Keet wrote:
I'm in the process of writing an application that signs binary data for
loading
onto a Analog Devices BlackFin microprocessor. These chips have built in
support for verification of code. The chip gets loaded with the EC public
key,
and then you
Hi Stephen,
Is that a bug or is OpenSSL using stateless session resumption? FF also
supports that. In that case the session cache is not used.
It is somehow related to FF 3.5.x! I tried different 3.0.x builds on windows and
debian, as well as an old seamonkey 1.1.14 and it works all time
How do I disable SSLv3 so that I can use FIPS?
On Fri, Jul 17, 2009 at 4:22 PM, David Schwartz dav...@webmaster.comwrote:
Michael Kurecka:
I am trying to run wpa_supplicant in FIPS mode.
Why?
I don't think the MD5 function is even called
MD5 is part of SSLv3.
#6 0x4003e6b8 in
I'm trying to make a simple application which uses a 4096-bit RSA
public key (encoded in DER format, statically compiled into the
program itself. I generated this key with OpenSSL itself and I am able
to do operations with it from the command-line. And I know I encoded
it in the program
Hi,
I am trying to compile OpenSSL 0.9.8k with FIPS for ARM machine (versatile). I
am cross compiling using toolchain for my platform. Unfortunatelly during
generation of the fips canister the process requires some host native
executables to generate what I believe is some checksums. I am not
On Mon, Jul 20, 2009, Chris Koston wrote:
Hi,
I am trying to compile OpenSSL 0.9.8k with FIPS for ARM machine (versatile).
I am cross compiling using toolchain for my platform. Unfortunatelly during
generation of the fips canister the process requires some host native
executables to
Hi,
The public key in your source is encoded as a SubjectPublicKeyInfo, so
you can't use d2i_PublicKey which only handles RSA public keys encoded
in the PKCS#1 format. In your case, you have to use the function
d2i_PUBKEY_bio to read your hard-coded key.
Here is how you can do it using the
Thank you for quick answer. We are actually planning to submit our
final product for validation so my understanding is that it needs to
be validated again with all the modifications we have made. Am I
correct? If yes then I am wondering if this is even technically
achievable to get it to
Thanks. I switched to using d2i_PUBKEY (it really is hard-coded, so I
don't think there's a reason to use BIO – if I'm mistaken, please tell
me) and it now returns a valid address in memory.
On 20-Jul-09, at 4:59 PM, Mounir IDRASSI wrote:
Hi,
The public key in your source is encoded as a
Yes, d2i_PUBKEY is sufficient.
--
Mounir IDRASSI
IDRIX
http://www.idrix.fr
Jeremy R. wrote:
Thanks. I switched to using d2i_PUBKEY (it really is hard-coded, so I
don't think there's a reason to use BIO – if I'm mistaken, please tell
me) and it now returns a valid address in memory.
On
Michael Kurecka:
How do I disable SSLv3 so that I can use FIPS?
Sorry to be blunt, but you don't. A FIPS wpa_supplicant is a significant
task, you can't just flip a few switches and make one appear.
DS
__
OpenSSL Project
13 matches
Mail list logo
