Per this web page the hash algorithm did change if I understand your
question correctly.
http://www.openssl.org/docs/apps/x509.html
I think c_rehash uses -subject_hash as the option. These options allow you
to use the old hash from the command line. Don't know how to get c_rehash
to do this.
*-s
Again thanks Dave. I figured out my last question about the Signature
algorithm. Signed cert is working perfectly on my device.
On Fri, May 17, 2013 at 7:59 PM, Stan Joyner wrote:
> Thanks Dave for the quick response. It helped a lot.
>
> One last question and I think I'll ha
-with-SHA1<<<< Want ecdsa-with-SHA384
Thanks,
Stan
On Fri, May 17, 2013 at 6:20 PM, Dave Thompson wrote:
> >From: owner-openssl-us...@openssl.org On Behalf Of Stan Joyner
> >Sent: Friday, 17 May, 2013 16:14
>
> >I have the following in place:
> &g
ended when I tried to sign my device CSR with
the intermediate CA.
Always get errors about not being able to load private keys at that point.
I also need to be able to do this with a depth of 3; (RootCA + CA1 + CA2).
Thanks
Stan
SHA512_CTX *c);
I don't understand how this works obviously. Any information would be
appreciated. I want to use this in an embedded application.
I also noticed macros in sha_locl.h for SHA. Is this where the SHA1
functions are implemented?
Thanks,
Stan Joyner
and/rand_win.o ../crypto/rsa/rsa_lib.o
../crypto/rsa/rsa_none.o ../crypto/rsa/rsa_oaep.o ../crypto/rsa/rsa_pk1.o
../crypto/rsa/rsa_pss.o ../crypto/rsa/rsa_ssl.o ../crypto/rsa/rsa_x931.o
../crypto/sha/sha1dgst.o ../crypto/sha/sha256.o ../crypto/sha/sha512.o
../crypto/uid.o'
it
work anyway.
Does anyone know what has changed by calling OpenSSL_add_all_algorithms()?
Does it brake FIPS certification in any way?
If that is not correct what private key encryption is supposed to be used
with FIPS?
Thanks
Stan
___
