Re: PEM to EVP_PKEY

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

 

On Sun, Sep 25, 2022 at 04:12:57PM -0700, Kory Hamzeh wrote:

> So I have a PEM formatted file that contains an EC certificate and a
> private key. I need to load that PEM file and converted to an
> EVP_PKEY. The goal of this exercise is so that I can do an ECDH
> pairwise consistency test (SP 800-56Ar3 Section 5.6.2.1.4) on the key
> pair by calling EVP_PKEY_pairwise_check(). I need some help in getting
> from the PEM file to an EVP_PKEY.

For an "atomic" interface, that reads both from the same file, even
if the file is replaced (atomically, via rename(2)) while the key and
cert are being read:

    1. https://github.com/vdukhovni/postfix/blob/master/postfix/src/tls/tls_certkey.c#L344-L378
    2. https://github.com/vdukhovni/postfix/blob/master/postfix/src/tls/tls_certkey.c#L245-L266

For a simpler interface that is subject to races vs. atomic updates:

    https://github.com/vdukhovni/postfix/blob/master/postfix/src/tls/tls_certkey.c#L245-L266

-- 
    Viktor.
[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

[Index of Archives]     [Linux ARM Kernel]     [Linux ARM]     [Linux Omap]     [Fedora ARM]     [IETF Annouce]     [Security]     [Bugtraq]     [Linux]     [Linux OMAP]     [Linux MIPS]     [ECOS]     [Asterisk Internet PBX]     [Linux API]

  Powered by Linux