Все вопросы: [openssl]

119 вопросов

похожие теги: php-openssljruby-openssl
3
голосов
3ответов
7152 просмотров

How do I tell Ruby's OpenSSL library to ignore a self-signed certificate error?

I'm trying to use Ruby's SOAP support as follows: SERVICE_URL = 'https://...' ... def create_driver ::SOAP::WSDLDriverFactory.new(SERVICE_URL).create_rpc_driver driver.options['protocol.http.ssl_config.verify_mode'] = OpenSSL::SSL::VERIFY_NONE driver.options['protocol.http.ssl_config.clie...

2
голосов
3ответов
1102 просмотров

not-yet-commons SSL and Open SSL, Java and C++, Common Ground?

The not-yet-commons SLL package for Java provides an OpenSSL object with a method for password based encryption: encrypt("des", password, data); This method is said to be compatible with the OpenSSL C library. My question is, what is the OpenSSL C++ method equivalent to the above Java? Thanks

0
голосов
1ответов
1385 просмотров

MySQL-SSL Configuration on Windows Machine ( openSSl, Mysql 5.1, IIS 5.0)

how to setup openssl at the mysql? "have_ssl" disabled; how to enable it? " mysql> SHOW VARIABLES LIKE 'have_ssl'; If the value is YES, the server supports SSL connections. If the value is DISABLED, the server supports SSL connections but was not started with the appropriate --ssl-xxx optio...

2
голосов
3ответов
3108 просмотров

What format signature does Openssl pkeyutl expect?

I'm trying to verify a file that was signed by hashing with SHA-1 and encrypting the hash with an RSA private key. Obviously I'm using the RSA public key to verify. The key is in DER format. The signature verification works correctly using Java's Signature class. The openssl command I'm tryin...

5
голосов
2ответов
2675 просмотров

Secure Remote Password Implementation for iPhone

I've been reading about Stanford's Secure Remote Password protocol, and it looks ideal for the sort of environment in which iPhone apps run. Unfortunately, I haven't been able to find a good Objective-C implementation of the protocol. Nor, as far as I can tell, do the crypto libraries in the SDK ...

2
голосов
2ответов
3849 просмотров

Trouble with OpenSSL's BN_bn2bin function

I'm trying to use the BN_* functions in OpenSSL. Specifically, I have the following code: #import <openssl/bn.h> BIGNUM * num = BN_new(); BN_set_word(num, 42); char * buffer = malloc((BN_num_bytes(num)+1) * sizeof(char)); buffer[BN_num_bytes(num)] = '"42 in binary is *"'; int len = BN_bn2...

0
голосов
1ответов
386 просмотров

Does keyczar python library provide functionality to verify signatures signed using x509 PEM certificates?

I could not find a method to parse x509 pem files. I tried using ParseX509 of utils module which threw up.

0
голосов
1ответов
501 просмотров

OpenSSL error preventing Apache2.2 startup on win32

So I go to start my Apache2.2 service, which uses mod_ssl, from the command line with "-k start -e debug". It shows all the modules loading, waits a second or two, then returns me to the command prompt without error. The service, however, is no longer running. In the error log, there's this te...

16
голосов
1ответов
26032 просмотров

Apple Push Notification Service

i tried to run using local mac machine but go the following errors Warning: stream_socket_client() [function.stream-socket-client]: Unable to set private key file `/Applications/XAMPP/xamppfiles/htdocs/apns/apns-dev.pem’ in /Applications/XAMPP/xamppfiles/htdocs/apns/apns.php on line 9 Warning: ...

1
голосов
2ответов
690 просмотров

Ruby open4r multiple systems calls with prompts

I'm trying to write a little lib which generates a keypair using open4, is this the best way of dealing with system calls with multiple prompts? require 'rubygems' require 'open4' Open4::popen4("sh") do |pid, stdin, stdout, stderr| stdin.puts "openssl genrsa -des3 -out tmp_priv.pem 2048" st...

35
голосов
2ответов
51094 просмотров

Trouble understanding SSL certificate chain verification

My app uses SSL to communicate securely with a server and it's having trouble verifying the certificate chain. The chain looks like this: Entrust.net Secure Server Certification Authority -> DigiCert Global CA -> *.ourdomain.com We are using a certificate store pulled from Mozilla. It con...

21
голосов
3ответов
44445 просмотров

aps_developer_identity.cer to p12 without having to export from Key Chain?

I have a shed load of 'aps_developer_identity.cer' certificates exported from iPhone Developer portal. They were all created using the same Certificate Signing Request and (thus) the same private key. If I export just the private key from the Apple Key Chain is it then possible to take the privat...

0
голосов
1ответов
942 просмотров

SSL_accept hangs after calling fork()

I'm writing an app in C++ using openssl, and I can't seem to get the ssl socket connection to work. I have an abstract class, with multiple functions implemented using various protocols by the inheriting classes and simple TCP and UDP ( posix sockets ) work fine. I could not get the ssl workin...

2
голосов
2ответов
5475 просмотров

Compiling OpenSSL on windows

Quoting the instructions for building OpenSSL: Then from the VC++ environment at a prompt do: nmake -f ms\ntdll.mak When I do this, I get cl /Fotmp32\cryptlib.obj -Iinc32 -Itmp32 /MT /Ox /O2 /Ob2 /W3 /WX /Gs0 /GF /Gy /nologo -DOPENSSL_SYSNAME_WIN32 -DWIN32_LEAN_AND_MEA...

-5
голосов
1ответов
1565 просмотров

Base64 decoding - incorrect string length

I'm trying to decode base64-encoded string with openssl. However, it works only 4 times out of 5. Decoded string should always be 64 chars long. BIO_read() always returns 64. However, sometimes returned buffer is shorter than 64! Any ideas what is wrong? How can i always get the correct string?

4
голосов
1ответов
6566 просмотров

Bad OpenSSL certificate

I am trying to make a fake CA and sign a certificate with it to use with stunnel (which just seems to be calling OpenSSL routines, so you probably don't need to know the program to help :). However, stunnel keeps rejecting my certificate saying that it isn't signed with the right key! This is ho...

1
голосов
1ответов
1690 просмотров

Resolving "ssl handshake failure" error in PostgresQL

I would like to connect to my Postgres 8.3 database using SSL from my XP client using OpenSSL. This works fine without SSL. When I try it with SSL (no client certificate), I get the error: error:140790E5:SSL routines:SSL23_WRITE:ssl handshake failure I suspect that I need to change something w...

0
голосов
2ответов
770 просмотров

SVN checkout over secure http fails with Memory Fault

I built subversion client (1.6.5) along with its required dependency libs on SuSe 10. I am trying to access our central repository server over https a secured URL. But when i run the svn checkout command giving proper credentials it gives me memory fault. What is that i have missed in building S...

2
голосов
3ответов
4099 просмотров

Powershell Scripting Signing of SSL CSRs by CA?

I'm in a situation where I need to deploy around 200 SSL Certificates to various devices around our Agency (HP iLO - such joy they bring...). At present I have a powershell script that obtains a CSR from the iLO Device, but I now need to be able to sign this with our CA in an automated manner so ...

6
голосов
3ответов
4573 просмотров

Using Crypto++ generated RSA keys on OpenSSL

Is there a way to use the RSA keys I've generated with the Crypto++ API in OpenSSL? What I am looking for is a way to store the keys in a format that both Crypto++ and OpenSSL can easily open them. I'm writing a licensing scheme and would want to verify signatures and decrypt files using the Cry...

2
голосов
2ответов
7389 просмотров

How to resolve deprecation warnings for OpenSSL::Cipher::Cipher#encrypt

I've just upgraded my Mac to Snow Leopard and got my Rails environment up and running. The only difference -- OSX aside -- with my previous install is that I'm now running ruby 1.8.7 (2008-08-11 patchlevel 72) [universal-darwin10.0] (Snow Leopard default) rather than 1.8.6. I'm now seeing depre...

2
голосов
1ответов
291 просмотров

CSP Out of memory with CryptVerifySignature

I have an issue with CryptVerifySignature returning NTE_NO_MEMORY (The CSP ran out of memory during the operation.) I'm trying to verify an signature generated with OpenSSL, I've already decoded a PEM public key, reversed the byte-sequence and imported it. I've tried explicity specifying the MS...

2
голосов
3ответов
1031 просмотров

What do CAs (Certificate Authority) deliver from CSR?

I need an SSL certificate for a web server. I can generate a self-signed SSL certificate with the following OpenSSL commands: openssl req -newkey rsa:512 -x509 -days 365 -nodes -out cert.pem -keyout cert.pem openssl dhparam -inform pem -in cert.pem -outform pem -out dhparam.pem 512 cat dhparam.p...

5
голосов
1ответов
1078 просмотров

Will my open source project be illegal in certain countries if I include openssl?

I have a small open source project and I am about to add some encryption to it. I am wondering if this will restrict where developers can contribute from. If so where are these laws so stringent? Is there a reliable up to date standard available on the web in regards to this matter? Should I ...

0
голосов
2ответов
1486 просмотров

having issue with fsockopen while sending mail with swiftmailer

I was playing around the new swiftmailer 4.0.4 using my zend studio embbeded apache server where i can send successfully emails through gmail smtp. Now that it's was fine and that i decided to use it in real project and this time along using xampp 1.6.8.any time i run the same function there is t...

0
голосов
1ответов
6247 просмотров

OpenSSL in bash script

I'm trying to make a bash script in linux where some encrypted data is embedded and then retrieved and decrypted with openssl, like this: cat | openssl des3 -d -a -salt -pass pass:asdf > output.txt <<EOF U2FsdGVkX1/zN55FdyL5j1nbDVt5vK4V3WLQrnHPoycCJPwWO0ei3PCrrMqPaxUH.....blablablah dat...

0
голосов
2ответов
236 просмотров

OpenSSL: JRuby only supports F_SETFL for fcntl/ioctl currently

When I attempt to use net/https with JRuby 1.3.0RC1 with the jruby-openssl-0.5.1 gem installed I get the following error: Error in JobsRequiringReportDataProcessor: JRuby only supports F_SETFL for fcntl/ioctl currently /opt/bin/jruby/lib/ruby/gems/1.8/gems/jruby-openssl-0.5.1/lib/openssl/ssl.rb:...

1
голосов
4ответов
3651 просмотров

Cross-compiling with OpenSSL for Windows

I'm trying to compile the oauth-utils http://mir.dnsalias.com/oss/oauth/start for Windows from Ubuntu. I have compiled it on Windows before (a few months back), but wanted to try cross-compiling. I got openssl build using mingw32 ok, and put libssl.a and libcrypto.a in the right place. The lin...

2
голосов
1ответов
2114 просмотров

Which is more secure OFB or CFB?

I'm working a small project, using AES encryption and wanted to use it in streaming mode, which is considered a more "suitable" mode for socket usage? OFB or CFB? I've been reading about it and can't really decide, so any ideas are highly appreciated. I'll be using OpenSSL/C++.

2
голосов
2ответов
2159 просмотров

SWIG OpenSSL 1.0 - Problem with STACK_OF Macros

With prior OpenSSL versions it was possible to do this in SWIG .i files: STACK *ssl_get_ciphers(SSL *ssl) { return (STACK *)SSL_get_ciphers(ssl); } With OpenSSL 1.0.0beta3 this fails because STACK seems to be no longer defined. New OpenSSL tries to do a better job at type checking, so one ...