On 25/05/14 14:40, Mody, Darshan (Darshan) wrote: > I use below command > > openssl ecparam -out key.pem -name prime256v1 -genkey. I am using another 3rd > Party tool SIPp. Below is the method that sets the SSL CTX >
Whilst I don't think its the cause of your problem, I would suggest adding -noout to the above command (prevents both the parameters and the key being written out separately to the key file, which is probably not what you intended). I took your code and stripped it down to just the code to load the private key. I also created a key file using the command line you provided. My code below. This works fine. What error are you seeing, and what version of openssl are you using. Matt #include <openssl/ssl.h> #define ERROR printf #define SSL_INIT_ERROR -1 #define SSL_INIT_NORMAL 0 typedef int ssl_init_status; static char *tls_key_name = "key.pem"; ssl_init_status FI_init_ssl_context (void) { SSL_CTX *sip_trp_ssl_ctx; sip_trp_ssl_ctx = SSL_CTX_new( TLSv1_method() ); if ( sip_trp_ssl_ctx == NULL ) { ERROR("FI_init_ssl_context: SSL_CTX_new with TLSv1_method failed"); return SSL_INIT_ERROR; } if ( SSL_CTX_use_PrivateKey_file(sip_trp_ssl_ctx, tls_key_name, SSL_FILETYPE_PEM ) != 1 ) { ERROR("FI_init_ssl_context: SSL_CTX_use_PrivateKey_file failed"); return SSL_INIT_ERROR; } printf("Success\n"); return SSL_INIT_NORMAL; } int main(void) { ssl_init_status ret; SSL_load_error_strings(); OpenSSL_add_ssl_algorithms(); ret = FI_init_ssl_context(); } ______________________________________________________________________ OpenSSL Project http://www.openssl.org User Support Mailing List openssl-users@openssl.org Automated List Manager majord...@openssl.org