Hi,
I have a problem when using of Diffie-Hellman functions in libcrypto.a.
Both in the case of using SSLeay 0.9.0b and in the case of using
OpenSSL 0.9.1c, and a prime number is PRIME_1 which generated by calling
DH_generate_parameters(768, DH_GENERATOR_2, ...):
char PRIME_1[] = {
0xF4,0x7C,0xAF,0xD5,0xD1,0xE3,0xB3,0x4E,0x76,0x57,0xAD,0x06,0xD4,0x14,0x2C,0xF1,
0x4D,0xC9,0x3A,0xCF,0xA1,0xD3,0xC4,0x66,0x94,0x82,0x68,0x39,0xEC,0xAB,0x47,0xE9,
0x93,0xAA,0x9D,0xE4,0x0E,0xC1,0x8A,0x73,0x9F,0x1F,0x1F,0x39,0xD9,0xF5,0xBC,0x84,
0xB0,0x37,0x51,0x22,0x12,0x4B,0x4C,0xA0,0x91,0x8C,0xFB,0x17,0xFA,0x7D,0xBC,0xCA,
0x33,0x36,0xB6,0x4D,0x3E,0x2B,0x1A,0xF7,0x5C,0x2D,0x11,0x0F,0x4C,0xE8,0x34,0x82,
0xF6,0x4C,0x67,0xD9,0x57,0x8E,0x88,0xBA,0xD1,0x43,0x32,0x5A,0x6A,0x1C,0x94,0x2B
};
There is no problem to compute the shared key of Diffie-Hellman.
When in the case of using OpenSSL I used a prime number is PRIME_2
which defined in RFC2409 "The Internet Key Exchange (IKE)":
char PRIME_2[] = {
0xff,0xff,0xff,0xff,0xff,0xff,0xff,0xff,0xc9,0x0f,0xda,0xa2,0x21,0x68,0xc2,0x34,
0xc4,0xc6,0x62,0x8b,0x80,0xdc,0x1c,0xd1,0x29,0x02,0x4e,0x08,0x8a,0x67,0xcc,0x74,
0x02,0x0b,0xbe,0xa6,0x3b,0x13,0x9b,0x22,0x51,0x4a,0x08,0x79,0x8e,0x34,0x04,0xdd,
0xef,0x95,0x19,0xb3,0xcd,0x3a,0x43,0x1b,0x30,0x2b,0x0a,0x6d,0xf2,0x5f,0x14,0x37,
0x4f,0xe1,0x35,0x6d,0x6d,0x51,0xc2,0x45,0xe4,0x85,0xb5,0x76,0x62,0x5e,0x7e,0xc6,
0xf4,0x4c,0x42,0xe9,0xa6,0x3a,0x36,0x20,0xff,0xff,0xff,0xff,0xff,0xff,0xff,0xff
};
to compute the shared key failed.
But in the case of using SSLeay, it is success !!
I always used the number 2 as generater.
The results of dhtest is contained in the last part of this mail.
Would anyone please explain me.
Regards.
/Shoichi `NE' Sakane/
-----
The following is the results of dhtest with PRIME_2,
In SSLeay:
p
=FFFFFFFFFFFFFFFFC90FDAA22168C234C4C6628B80DC1CD129024E088A67CC74020BBEA63B139B22514A08798E3404DDEF9519B3CD3A431B302B0A6DF25F14374FE1356D6D51C245E485B576625E7EC6F44C42E9A63A3620FFFFFFFFFFFFFFFF
g =2
pri 1=A502611508E3E82E26B40CC6
pub
1=70CD7B9D2A8DAD88AAAEBF568F2B1C43E8BC4331693C278A7D56249B68B921AB6E345EE42B908D5D4773C78784A2377BF5092E33CA8B6FA6C119AC9A7CAB1D0C670AB4CA095BA4E991F9205D1F76303A59FA1C6903E69A2DECC8570F1049A
pri
2=5C118D7877529FDC47FF9948568C29B451BF49CD0DFDE72BD5DF490919C4883C130532C98A3059D589A0FEC99203093310DE936E61A267E368870ED578A1C884CA8155E4F09A46E700005B66A5A10A735EA25231D7EAF8CA33C29803E9120A02
pub
2=FEB7255867E986058BC234CA60A7E83ADBF8D4F77FCAD3FD7A24B350D35D419CA5BB62B82FA29411D7B4CC3DB550DDB45213DC462A674E38ECE0C00015761B8C32497AD441EC7899D1B3E5364FF65BD0A6A33304A25BC438DEE1097E4D63C1E7
key1
=74D1DB07086E294E9E1EF8DA8742D8C5AE284C9D3B2DCBB3D68D0C502BE325F8FD6C46A93E384227B0C743244167E2B4BC3116B3D7835A2C7E196CA988F6BD2DBD6E4F7F61FC2835ADD98957569D68DA52E4DB288D7B864BC40D79708B1129F8
key2
=74D1DB07086E294E9E1EF8DA8742D8C5AE284C9D3B2DCBB3D68D0C502BE325F8FD6C46A93E384227B0C743244167E2B4BC3116B3D7835A2C7E196CA988F6BD2DBD6E4F7F61FC2835ADD98957569D68DA52E4DB288D7B864BC40D79708B1129F8
In OpenSSL:
p
=FFFFFFFFFFFFFFFFC90FDAA22168C234C4C6628B80DC1CD129024E088A67CC74020BBEA63B139B22514A08798E3404DDEF9519B3CD3A431B302B0A6DF25F14374FE1356D6D51C245E485B576625E7EC6F44C42E9A63A3620FFFFFFFFFFFFFFFF
g =2
pri 1=EAB7F69AD83A2842E27F2B53
pub
1=4C0A23F3F101AE329E5B7D0D8990D94D88002A260796E3806B2451E35DF4BAF82B8D1F3E44BAFD908CA124F5010834260A9B5B11B0798A66167C14BF2B739A0E58B0DD0E5727599A193B80C265F0B34B0C79945926E9FF5869CE9DE8529CD67B
pri
2=4716C61044437D6229673CCC2E7274A366BB819BE9DF7AF1EF196A889FE6A1518BCD4AA1AE6709B12D97DB2F8A5047CCDD3F0027EEAD5C4FFE2F71EE1867D66935C005844B5A58CB865E13E9B7E08170EB1D8C2016EE7E1C18B151F8D67F0767
pub
2=46F46AC724D60C5D02EC388CE93CFC4475521DF7386D5E7C62A8272C390BCF4284330F74E077BF90A831E375247A718C13FBF5C3823A77316E72511A1281B252BCD8E48D8967267F5182EC427972078A50EF1CD2E46E61948098DB7F709FD84D
key1
=04439DC67C6D273FFEBCCE7D9F08305C3DDC16FF10DB47A2A37FFE71E847AEF88973E85D72CAE6807F8C926F924F288B9A7AC8E3D51EE7C7FC3F9562099A50FF558EB313963FC315E3DAA6451690856BB542910B24AED64C92C069EC2236A5C4
key2
=12B514897CDC46F0E5459D8FC9D57161BDFA6515F94DE592262308C032E5D744323B030DEF1A9E7C911F1131AF08ED1AD715750D926039BCB11377CB7D337A44B485F71FF045CA8467E06C121B69096366FE15AF5BF839F5B8B32A28D900CC79
Error in DH routines
______________________________________________________________________
OpenSSL Project http://www.openssl.org
User Support Mailing List [EMAIL PROTECTED]
Automated List Manager [EMAIL PROTECTED]
