Need help on How to use ECDH in openssl

Hello All, I need to use ECDH in my work. Could any one please tell me how to compile and test the ECDH code available in openssl Thanks in adavace, KRSC - Meet people who discuss and share your passions. Join them now.

Re: error in docs

The best way to create a CA using only openssl tools is to use the CA.pl or CA.sh shell scripts. The best way to create and manage a CA is to use other tools. -Kyle H On Tue, Apr 22, 2008 at 2:17 PM, Jason Dusek <[EMAIL PROTECTED]> wrote: > In the HOWTO on making certificates, it suggests we sh

error in docs

In the HOWTO on making certificates, it suggests we should check out the file called "ca.txt" to learn more about making a CA: 4. Creating a self-signed test certificate If you don't want to deal with another certificate authority, or just want to create a test certificate for

RE: DER encoding SubjectPublicKeyInfo

Right, I had missed that algorithm identifier is a sequence. Now it makes sence. Thanks! -- R > From: [EMAIL PROTECTED] > To: openssl-users@openssl.org > Subject: Re: DER encoding SubjectPublicKeyInfo > Date: Tue, 22 Apr 2008 14:39:34 +0200 > > you can s

HTTPS With SSL_ERROR_ZERO_RETURN

Hello All, I can not connect to a HTTPS server of WebServices. ( https://hnfe.sefaz.es.gov.br/Nfe/wsdl/nfeStatusServico.wsdl) The error occurs when the function SSL_read() is calling, returning 0 and SSL_get_error () equals SSL_ERROR_ZERO_RETURN. The problem is not the certificates, because when

Re: The rules of SSL-Certificate validation?

On Tue, Apr 22, 2008 at 12:59 AM, Lutz Jaenicke <[EMAIL PROTECTED]> wrote: > Ok, so we are facing a violation of policies at the CA. At the date of > certificate verification we are however checking whether all components > of the certificate chain are valid at this day. > Even though the overl

Re: The rules of SSL-Certificate validation?

* Lutz Jaenicke wrote on Tue, Apr 22, 2008 at 09:59 +0200: > > This rule is independent of current time. e.g. If the validity dates > > of the parent certificate is 2008/04/18~2009/04/18 and the ones of > > child certificate is 2008/06/18~2009/06/18 or 2008/03/18~2009/03/18, > > the certificate cha

Re: DER encoding SubjectPublicKeyInfo

you can see using the lengths the second sequence contains only algoritm oid and parameters (in this case NULL parameters). This is AlgorithmIdentifier. Below the bit string contains the der encoding of subjectPublicKey (encoded). Francesco Petruzzi [EMAIL PROTECTED] - Original Message ---

Re: libcrypto.a(x86_64cpuid.o): relocation R_X86_64_PC32 against `OPENSSL_cpuid_setup' can not be used when making a shared object; recompile with -fPIC

Thank you very much. On Fri, Apr 18, 2008 at 6:00 PM, Kyle Hamilton <[EMAIL PROTECTED]> wrote: > You need to use: > > ./config shared > > This is the supported way to create a shared, dynamically-loadable > library. > > -Kyle H > > On Fri, Apr 18, 2008 at 1:49 PM, Rodrigo Castro <[EMAIL PROTECTED

RE: DER encoding SubjectPublicKeyInfo

Thanks, that explains the 0x30 tag value. What about the DER encoding? Is that correct? The 'openssl asn1parse' output of the DER encoding is: 0:d=0 hl=3 l= 159 cons: SEQUENCE 3:d=1 hl=2 l= 13 cons: SEQUENCE 5:d=2 hl=2 l= 9 prim: OBJECT:rsaEncrypt

How to set customized information in OID by API

Hi, Have any ideas to set customized information in OID field of certificate? I have searched around the OpenSSL interfaces and googled the hints to do this job, but nothing is presented to me. How can I accomplish this functionality? Any suggestion or example codes? Thanks in advance, Ian ___

Re: The rules of SSL-Certificate validation?

Anri Lau wrote: > Hi Luzt, > > On 18/04/2008, *Lutz Jaenicke* <[EMAIL PROTECTED] > > wrote: > > Anri Lau wrote: > > Hi All, > > > > Anyone know how many rules should be performed when build TLS > > connection? > > I have some test case. The certific