Re: pkcs11 help

2009-12-16 Thread samuel smith
Thanks Cristian. I actually want to implement pkcs11 support in OpenSSL. Any one can please direct to correct path for implementing the pkcs11 engine.As i am new openssl , please tell me what all would be required to develop this and please direct me to some document which might be usefull for dev

Re: pkcs11 help

2009-12-16 Thread Jan Pechanec
On Wed, 16 Dec 2009, samuel smith wrote: >Thanks Cristian. > >I actually want to implement pkcs11 support in OpenSSL. Any one can please >direct to correct path for implementing the pkcs11 engine.As i am new >openssl , please tell me what all would be required to develop this and >please direct me

Re: pkcs11 help

2009-12-16 Thread samuel smith
Hi Jan, Can this patch be used in any platfrom with out any legal issue? I can see the copyright information the patch +CDDL HEADER START +The contents of this file are subject to the terms of the + * Common Development and Distribution License, Version 1.0 only + * (the "License"). You may

Re: pkcs11 help

2009-12-16 Thread Jan Pechanec
On Wed, 16 Dec 2009, samuel smith wrote: >Hi Jan, >Can this patch be used in any platfrom with out any legal issue? ah, /usr/include/security/cryptoki.h is shipped with the patch, and that's under CDDL. All other new code is under OpenSSL license. It's up to you if the CDDL license is O

The value of subject key identifier calculated

2009-12-16 Thread tushar ganguli
Hi, I have been trying to generate the value of the subject key identifier but am getting conflicting results: RFC5280 section 4.2.1.2 states that the subject key id is the sha1 hash of the public key. But when I do the following I get different

Re: The value of subject key identifier calculated

2009-12-16 Thread Victor Duchovni
On Thu, Dec 17, 2009 at 09:30:57AM +0530, tushar ganguli wrote: > Hi, > I have been trying to generate the value of the subject key identifier but > am getting conflicting results: > > RFC5280 section 4.2.1.2 > states that the > subject key id i

Re: The value of subject key identifier calculated

2009-12-16 Thread tushar ganguli
Hi Victor, Thanks for the response. So should I take the PEM formatted output, strip the --- BEGIN -- / -- END -- lines from the key and then convert the Base64 encoding to binary format and then calculated the hash? Will that be the same as displayed in the certificate? Tushar. On Thu, Dec 17,