[CentOS] Support for ECDSA in OpenSSL?
Robert Moskowitz
rgm at htt-consult.com
Fri Apr 25 14:22:22 UTC 2014
On 04/25/2014 08:53 AM, Robert Moskowitz wrote:
> On 04/25/2014 08:07 AM, Reindl Harald wrote:
>> Am 25.04.2014 13:57, schrieb Robert Moskowitz:
>>> Does the version of OpenSSL on Centos 6.5 support ECDSA keypairs?
>>>
>>> How do I test if this works? (though I should probably ask this on the
>>> OpenSSL list)
>>>
>>> The reason I suspect a problem is that HIPL for Centos
>>> (http://infrahip.hiit.fi/) is not creating the ECDSA Host Identity,
>>> whereas my Fedora installation IS creating the ECDSA HI
>> the OpenSSL version does (one of the news in 6.5)
>> but sadly OpenSSH was not rebuilt against the new OpenSSL
>> so no, currently no ECDSA before RHEL7-Beta1
> This is not OpenSSH, but HIP for Linux.
>
> The HIPL binaries for Centos were compiled on a 6.5 system with all
> current updates. Or so the developer told me :)
>
> Is there some switch that is needed?
I checked with the HIPL developer and got:
>HIPL checks during ./configure if ECC is missing from OpenSSL and
disables all ECC code if it is unuvailable.
So I am checking more into this. What is ./configure actually doing to
check if ECC is present or not? Was there something wrong with my
install, and I need to install again? That is is there a test I can do
directly against my OpenSSL to determine if NOW I have ECC and did not
have something right at that time?
thanks all for any help
More information about the CentOS
mailing list