Hi All,
I have a C++ application that links statically with Openssl library. We already
modify some parts of openssl (excludes crypto part) library to extract session
keys and other info to encrypt/decrypt traffic for a whole different purpose.
My question is since my application is statically l
On Fri, Feb 01, 2013 at 10:05:15AM +1300, T J wrote:
> >These are sufficient to generate a session unique key via a suitable KDF
> >salted with an application-specific string.
>
> OK, great. So I get the master key and run it through the a KDF and
> I get a 256 bit encryption key for use in my app
I am running the openssl tool from the FIPCA utility kit to check the server
certificate. I am getting error 20 and 21.
The certificate is retrieved successfully from the server and displayed on the
Dos console. However, error 20 and 21 is shown prior to the certificate
contents display and "Ver
On Wed, Jan 30, 2013 at 06:15:27PM +, Viktor Dukhovni wrote:
If the OP does not mind potential future binary compatibility
issues, and is willing to use non-public interfaces, then
the master secret can be accessed via:
SSL *ssl;
/* ... */
SSL_SESSION *sess = SSL_
On Wed, Jan 30, 2013 at 9:51 PM, Dr. Stephen Henson wrote:
>
> If you want it to just use the curve name instead you have to call:
>
> EC_KEY_set_asn1_flag(eckey, OPENSSL_EC_NAMED_CURVE);
>
> Steve.
> --
>
>
It's efficacious.
After I call EC_KEY_set_asn1_flag() before EC_KEY_generate_key(), the
