Hi,

I have ported Xsupplicant(EAP) code on Vxworks platform for a wireless
modem.
I am testing TLS authentication. Currently i am able to receive "server
certificate, server key exchange, server hello done" messages from
the server. But I am unable to send "client certificate, client key
exchange, client change cipher spec"messages.
An assertion "No data returned!" is thrown. The statement
"BIO_get_mem_ptr(mytls_vars->ssl_out, &retData);" is returning a zero
length data.
I am using BIO_new() , SSL_set_bio() functions initially.
Pls advice on how to fix this issue so that a proper response can be sent
to the server.

Regards,
Tejesh Vijayakumar
Software Engineer,
Product Engineering Services[PES] Group,

nike air force shoes AFS071087 - www.luxury-gift.org

Luxury Gift : http://www.luxury-gift.org
af shoes : http://www.luxury-gift.org/Shoes/af-shoes.html
nike air force shoes AFS071087 Link :
http://www.luxury-gift.org/Shoes/air_force_shoes_AFS071087.html

nike air force shoes AFS071087 Information :

Brand : af shoes
Code : AFS071087
Description : nike air force one men's shoes

Dwyane Wade's first signature shoe signifies his arrival as the leader
of a new generation of students of the game. Inspired by his
passionate energy and reckless abandon on the court, the Wade
performance shoe lets you discover a new game, the creation of that
new generation. Class is ready to begin, and it starts with the
Wade.

nike air force shoes Link :
http://www.luxury-gift.org/Watches/air_force_shoes_AFS071087.html

This question has been asked before and I could find no answers to it in the
archives.

Can one send the same buffer (for in and out parameters) to
EVP_EncryptUpdate and EVP_DecryptUpdate functions when the encryption cipher
is RC4?

Regards,
S M

This question has been asked before and I could find no answers to it in the archives.Can one send the same buffer (for in and out parameters) to EVP_EncryptUpdate and EVP_DecryptUpdate functions when the encryption cipher is RC4?
Regards,S M

I've been wrestling with the openssl.cnf and don't understand it.

I need to make some certs for some OpenBSD IPSec hosts (isakmpd)
and they require this field to have something in it.

Where should I start reading?

--
Crypto ergo sum. https://www.subspacefield.org/~travis/
Truth does not fear scrutiny or competition, only lies do.
If you are a spammer, please email john@subspacefield.org to get blacklisted.
______________________________________________________________________
OpenSSL Project http://www.openssl.org
User Support Mailing List openssl-users@openssl.org
Automated List Manager majordomo@openssl.org

Hello,
I am trying to build a custom asn1 structure in my program using openssl
0.9.6.
The structure will have a few sequences / sets with integers,
printablestrings, etc.

I am looking for some help on where to begin. I have been pouring over the
openssl code, and have been playing with various methods of creating this
ans1 structure but i haven't been able to create quite what i need.

Are there some good examples out there too look at?

Im currently doing things this way:

create ASN1_STRING, ASN1_INTEGER..etc
i2d all of them with null and get total size
call ASN1_object_size(1,i,V_ASN1_SEQUENCE); to get total size.
malloc new data size.
i2d with newly malloc'd data.
and finally
ASN1_STRING_set(seq,data,total);

On Tue, Jul 01, 2008, harold reggie wrote:

The first piece of advice if possible is DON'T. The ASN1 code changed
significantly in OpenSSL 0.9.7 and later and as a result it is much easier to
write. All the old code had been rewritten in the new format with the odd
exception such as SSL_SESSION.

I fixed it -- removed FIXCRIO from my qmail smtpd/run file
Sorry for the posting when this wasn't really an openssl problem... but I'd
like to post this follow up just in case someone googles it in the future if
they made the same mistake as me!

On Mon, Jun 30, 2008 at 1:32 PM, fbc gmail.com> wrote:

I have a key, K, that I use to sign an X509 certificate, X.

Later, a certificate Y arrives (this certificate Y may be the same as
X; we do not know), and I want to verify whether or not it was signed
by K.

Intuitively, I want to do something like X509_verify(Y, K). In my
mindset, this should be one of the basic building blocks of
certificate signature and verification. However, I can find no way to
do this. I'm using a python library called M2Crypto that returns False
when I do this, with no further information. I can find no equivalent
command to issue to the openssl command-line tool to diagnose the
problem interactively.

Can anyone help? Am I viewing this problem the wrong way? All I want
to know is whether or not a certificate was signed by a particular
public key.

Thanks,
Scott

On Sat, Jun 28, 2008, Razack wrote:

[snip]

Leonard F. Elia wrote:

I think it is a firefox problem and it is because I am using a * cert.
My cert is for *.mydomain.com. I think firefox flags it as
TLS-intolerant and problems ensue. There are some related bugs on mozilla.
______________________________________________________________________
OpenSSL Project http://www.openssl.org
User Support Mailing List openssl-users@openssl.org
Automated List Manager majordomo@openssl.org