On Fri, Nov 14, 2014, Fredrik Jansson wrote: > Hi Steve, thanks for helping out! > > The server cert is P-256 and the CA is P-384, please see below. Is that ok? >
That is but this isn't: > > Signature Algorithm: ecdsa-with-SHA1 > The signing digest needs to match the curve. So if you sign with P-384 you need SHA384 and for P-256 SHA256. Steve. -- Dr Stephen N. Henson. OpenSSL project core developer. Commercial tech support now available see: http://www.openssl.org ______________________________________________________________________ OpenSSL Project http://www.openssl.org User Support Mailing List openssl-users@openssl.org Automated List Manager majord...@openssl.org
