How to generate ECDSA certificate in OPenssl
Hi, I want to try generate ECDSA certificate and set up ECDH in key agreement, using Openssl. 1. Which version of OPenssl should I install? 2. Where can I get the document or examples? Hung-Yu Chien
Re: Re: How to generate ECDSA certificate in OPenssl
Hi Nils, Appreciate your kind help. I just want to generate the ECC certificate in command line, use it for a web server. I also want to set up the environment to test ECDH key agreement. Thanks in advance. Hung-Yu -- Original Message --- From: Nils Larsch <[EMAIL PROTECTED]> To: [EMAIL PROTECTED] Sent: Thu, 16 Dec 2004 11:32:26 +0100 Subject: Re: How to generate ECDSA certificate in OPenssl > [EMAIL PROTECTED] wrote: > >Hi, > > > > I want to try generate ECDSA certificate and set up ECDH in key agreement, > > using Openssl. > > command line or c code ? note: to be honest I'm not sure > in how far the current openssl ecc tls implementation is > complying with the latest ecc tls draft. > > > 1. Which version of OPenssl should I install? > > the cvs head > > > 2. Where can I get the document or examples? > > this depends on the first question > > Cheers, > Nils > __ > OpenSSL Project http://www.openssl.org User > Support Mailing List[EMAIL PROTECTED] Automated > List Manager [EMAIL PROTECTED] --- End of Original Message ---
problem with using openssl ecparam
Hi friends, I just installed openssl version. openssl-SNAP-20041220.tar.gz. I want to test ECDSA certificate through command line. I saw the man page and ecparam.o in my installation. However, I gor the following error message when I issue command "openssl ecparam ..." " ecparam: invalid parameter .. " What is wrong ? How can I fix the probelm? Thanks in advance.
Re:Re: problem with using openssl ecparam
Hi Nils, I installed openssl-SNAP-20041220.tar.gz from ftp://ftp.openssl.org/snapshot/. Is this version Ok? or should I install some version like "openssl-0.9.7-stable-SNAP-20041228.tar.gz" or something else? Thanks in advance. Hung-Yu >> >> However, I got the following error message when I issue command >> "openssl ecparam ..." >> >>" ecparam: invalid parameter .. " ^ >actually you should get >openssl:Error: 'ecparam' is an invalid command. >when you use an old openssl version >> >> What is wrong ? How can I fix the probelm? >Are you sure that you use the right openssl binary ? >With what options did you call it ? > Cheers, > Nils
Re: Re: problem with using openssl ecparam
Hi Nils, I got the following messages when issuing "openssl version -a". From the message, I see "-DOPENSSL_NO_EC ". So, should I install another version (which one?) or should I change the compiler directives. Thanks in advance. Hung-Yu - [EMAIL PROTECTED] root]# openssl version -a OpenSSL 0.9.7a Feb 19 2003 built on: Thu Mar 25 10:34:04 EST 2004 platform: linux-elf options: bn(64,32) md2(int) rc4(idx,int) des(ptr,risc1,16,long) blowfish(idx) compiler: gcc -fPIC -DZLIB -DOPENSSL_THREADS -D_REENTRANT -DDSO_DLFCN -DHAVE_DLFCN_H -DKRB5_MIT -DOPENSSL_NO_IDEA -DOPENSSL_NO_MDC2 -DOPENSSL_NO_RC5 -DOPENSSL_NO_EC -I/usr/kerberos/include -DL_ENDIAN -DTERMIO -Wall -O2 -g -pipe -march=i686 -Wa,--noexecstack -DSHA1_ASM -DMD5_ASM -DRMD160_ASM OPENSSLDIR: "/usr/share/ssl" engines: dynamic cswift chil atalla nuron ubsec aep ibmca sureware 4758cca - >[EMAIL PROTECTED] wrote: >> Hi Nils, >> >> I installed openssl-SNAP-20041220.tar.gz from >> ftp://ftp.openssl.org/snapshot/. >> Is this version Ok? > >should be (I didn't test it, but it should work) >What does "openssl version -a" give you ? > >> or should I install some version like >> "openssl-0.9.7-stable-SNAP-20041228.tar.gz" or something else? > >no, openssl-0.9.7* does not contain this ec stuff > >Cheers, >Nils >__ >OpenSSL Project http://www.openssl.org >User Support Mailing Listopenssl-users@openssl.org >Automated List Manager [EMAIL PROTECTED]
