RE: Is Sha2 supported for signing certs?

2012-06-14 Thread Dave Thompson
> From: owner-openssl-us...@openssl.org On Behalf Of Patrick Patterson > Sent: Wednesday, 13 June, 2012 15:59 > To: openssl-users@openssl.org > Subject: Re: Is Sha2 supported for signing certs? > > Hi Pushkar, > > Don't use the -md option - just use -sha256 direct

Re: Is Sha2 supported for signing certs?

2012-06-14 Thread Patrick Patterson
Hi Pushkar, Don't use the -md option - just use -sha256 directly. Have fun. Patrick. On 2012-06-13, at 2:11 PM, Pushkar Pathak wrote: > Hi All, > > I am trying to sign a certificate with SHA2. I have my own CA certificate > and want to sign an end entity certificate wi

Re: Is Sha2 supported for signing certs?

2012-06-13 Thread Pushkar Pathak
Yes it worked this time, may be I was picking up the older openssl. FYI - On Wed, Jun 13, 2012 at 3:06 PM, Dr. Stephen Henson wrote: > On Wed, Jun 13, 2012, Pushkar Pathak wrote: > > > Hi All, > > > > I am trying to sign a certificate with SHA2. I have my own CA certific

Re: Is Sha2 supported for signing certs?

2012-06-13 Thread Dr. Stephen Henson
On Wed, Jun 13, 2012, Pushkar Pathak wrote: > Hi All, > > I am trying to sign a certificate with SHA2. I have my own CA certificate > and want to sign an end entity certificate with sha2. Is SHA 2 supported? > > The commands that I tried were > > openssl ca -md sha

Re: Is Sha2 supported for signing certs?

2012-06-13 Thread Hanno Böck
On Wed, 13 Jun 2012 11:11:50 -0700 Pushkar Pathak wrote: > openssl ca -md sha256 This one works - however openssl ca --help doesn't mention it. So it's undocumentet, but works. I've used it to do this test installation: https://sha2.hboeck.de/ "sha2" can'

Re: Is Sha2 supported for signing certs?

2012-06-13 Thread Pushkar Pathak
Thanks Josh! On Wed, Jun 13, 2012 at 12:13 PM, Joshua Bowman wrote: > On 6/13/2012 11:11 AM, Pushkar Pathak wrote: > > Hi All, > > > > I am trying to sign a certificate with SHA2. I have my own CA > certificate and want to sign an > > end entity certificate

Re: Is Sha2 supported for signing certs?

2012-06-13 Thread Joshua Bowman
On 6/13/2012 11:11 AM, Pushkar Pathak wrote: > Hi All, > > I am trying to sign a certificate with SHA2. I have my own CA certificate and > want to sign an > end entity certificate with sha2. Is SHA 2 supported? > > The commands that I tried were > > openssl ca -md

Re: how to use ecdsa-with-sha2 algorithm with ecdsa signature algorithm

2010-09-27 Thread adkelkar
Inc./OU=Sun Microsystems Laboratories/CN=Test CA (Elliptic curve > secp160r1) > serial:E3:87:8E:A5:E8:D7:9C:23 > > X509v3 Basic Constraints: > CA:TRUE > Signature Algorithm: ecdsa-with-SHA1 > > I want to use ecdsa-with-SHA2 algorith

how to use ecdsa-with-sha2 algorithm with ecdsa signature algorithm

2009-04-27 Thread rajanchittil
:8E:A5:E8:D7:9C:23 X509v3 Basic Constraints: CA:TRUE Signature Algorithm: ecdsa-with-SHA1 I want to use ecdsa-with-SHA2 algorithm . This is the step i followed to generate the certificate 1. Generating curve parameters openssl ecparam -name prime192v2 -out

Re: No NID for SHA2 (was Re: unable to verify PKCS#7 objects signed with BC(CMS))

2008-05-29 Thread Victor Duchovni
On Wed, May 28, 2008 at 02:23:44PM -0500, [EMAIL PROTECTED] wrote: > On Tue, May 27, 2008 at 03:23:27PM -0500, [EMAIL PROTECTED] wrote: > > So a developer at my company is having a problem. > > > > When our business partner signs a data object using Bouncy Castle > > (PKCS#7 CMS), outputs PEM, an

No NID for SHA2 (was Re: unable to verify PKCS#7 objects signed with BC(CMS))

2008-05-29 Thread travis+ml-users
On Tue, May 27, 2008 at 03:23:27PM -0500, [EMAIL PROTECTED] wrote: > So a developer at my company is having a problem. > > When our business partner signs a data object using Bouncy Castle > (PKCS#7 CMS), outputs PEM, and we use OpenSSL and read it in, that > works fine, but when we try to get the

Re: default cipher is SHA2

2008-04-25 Thread Victor Duchovni
On Fri, Apr 25, 2008 at 05:54:05PM -0700, PoWah Wong wrote: > http://www.openssl.org/docs/apps/ciphers.html has these cipher suites using > SHA: > TLS_RSA_WITH_3DES_EDE_CBC_SHA, TLS_RSA_WITH_AES_256_CBC_SHA, > TLS_DHE_DSS_WITH_AES_256_CBC_SHA, etc. > Are the SHA in them all SHA1? Yes. --

Re: default cipher is SHA2

2008-04-25 Thread PoWah Wong
m: Victor Duchovni <[EMAIL PROTECTED]> > Subject: Re: default cipher is SHA2 > To: openssl-users@openssl.org > Received: Friday, April 25, 2008, 12:48 PM > On Fri, Apr 25, 2008 at 09:26:45AM -0700, PoWah Wong wrote: > > > For openssl 0.9.8e or higher, the default cipher

Re: default cipher is SHA2

2008-04-25 Thread Victor Duchovni
On Fri, Apr 25, 2008 at 09:26:45AM -0700, PoWah Wong wrote: > For openssl 0.9.8e or higher, the default cipher is SHA2 instead of SHA1, > isn't it? Neither is a cipher, and the default digest algorithm in 0.9.8 is "SHA1" as opposed to "md5" in 0.9.7 and earlier

default cipher is SHA2

2008-04-25 Thread PoWah Wong
For openssl 0.9.8e or higher, the default cipher is SHA2 instead of SHA1, isn't it? __ Looking for the perfect gift? Give the gift of Flickr! http://www.flickr.com

SHA2 support with mod_ssl

2007-01-22 Thread Erwann ABALEA
nit() doesn't add all the algorithms added by OPENSSL_add_all_algorithms(), and particularly not the SHA2 series. Unfortunately, Apache2 2.0.x calls the former, Apache2 2.2.x the later. So, basically, Apache2 is corrected (but an additional call to OPENSSL_add_all_algorithms() could be a good thi

Re: AW: SHA2

2006-10-30 Thread Nils Larsch
[EMAIL PROTECTED] wrote: Is there already a stable version of OpenSSL in the field that supports SHA256? yep, 0.9.8 Cheers, Nils __ OpenSSL Project http://www.openssl.org User Support Mailing Li

AW: SHA2

2006-10-30 Thread thomas.beckmann
ers@openssl.org > Betreff: Re: SHA2 > > Milan Tomic wrote: > > > > I'm trying to generate self signed certificates with sha256, sha384 > > and > > sha512 algorithms for testing purposes. It seems > openssl.exe doesn't > > understand it, althou

Re: SHA2

2005-05-11 Thread Nils Larsch
Milan Tomic wrote: I'm trying to generate self signed certificates with sha256, sha384 and sha512 algorithms for testing purposes. It seems openssl.exe doesn't understand it, although I have downloaded latest version (openssl-0.9.7g). try a recent snapshot from 0.9.8-dev (the cvs head) Nils _

SHA2

2005-05-10 Thread Milan Tomic
Title: SHA2 I'm trying to generate self signed certificates with sha256, sha384 and sha512 algorithms for testing purposes. It seems openssl.exe doesn't understand it, although I have downloaded latest version (openssl-0.9.7g). If openssl.exe can't create it then ple