We do the below for this operation:
1How we convert public part of 'EVP_PKEY' structure to 'unsigned char*
//Extract a public key from a PKEY struct.
ec_copy_public(EVP_PKEY *pKey, uint8_t *keybuf)
EC_KEY*pEcKey;
uint8_t encoded_key[MAX_KEYLEN_X962];
uint8_t
*Guessing the context that is sent to EVP_PKEY_derive_set_peer is
initialized/created with a pkey belonging to different group. *
*In other words, EC keys of both parties in DH are not of the same group. *
On Mon, Jun 30, 2014 at 10:13 AM, pratyush parimal
pratyush.pari...@gmail.com wrote:
Hi
Hi,
OpenSSL 1.0.2 has a new interface for creating a new ECDSA_METHOD.
Unlike the corresponding RSA_METHOD structure the ECDSA_METHOD structure
is privately defined in header file ecs_locl.h, and there are functions
like ECDSA_METHOD_set_sign() etc. to override members of the structure.
It took a couple of hours of code hacking followed by six long months of
waiting, but at long last revision 2.0.6 of the OpenSSL FIPS Object
Module v2.0 (validation certificate #1747) has finally been approved:
https://www.openssl.org/source/openssl-fips-2.0.6.tar.gz
Ø Using BIO apis is there a way to specify the local ip address on which an
application can bind to.
No, you will have to open and bind the socket yourself and then create a BIO
around that descriptor.
/r$
--
Principal Security Engineer
Akamai Technologies, Cambridge, MA
IM:
Because there is no documentation for SSL_CTX_set_tmp_ecdh_callback()
in OpenSSL 1.0.1 and older, I am afraid I have to ask:
1. Is the EC_KEY* returned by the callback supposed to be allocated
for each invocation or is it supposed to be a static shared by all
invocations?
If the latter (a
On Mon, Jun 30, 2014 at 4:32 PM, Jakob Bohm jb-open...@wisemo.com wrote:
Because there is no documentation for SSL_CTX_set_tmp_ecdh_callback()
in OpenSSL 1.0.1 and older, I am afraid I have to ask:
1. Is the EC_KEY* returned by the callback supposed to be allocated
for each invocation or is