Paul Hoffman wrote: > Is there a list of these somewhere?
Not to my knowledge. That's why I wrote that list in previous email. > I couldn't find any documentation on this with grep. > > I am particularly interested in what NSS_ECC_MORE_THAN_SUITE_B does, It is incomplete. Doesn't work in its present state. That's why I didn't mention it. > and in any other switched needed for doing Suite B. > Unrecognized elliptic curve (null) > certutil: unable to generate key(s) > : error 0 > # > > Do I need to build with another make variable, or do I need to call > certutil with an additional argument? You need to specify the curve with "-q curvename" See output of certutil -H for a list of curve names. Unfortunately, that list is wrong. It includes many curve names that are not implemented presently. There are only 3 available right now. They're the same ones used by Microsoft. I don't have the right 3 names handy. trial and error will find them. -- Nelson B _______________________________________________ dev-tech-crypto mailing list dev-tech-crypto@lists.mozilla.org https://lists.mozilla.org/listinfo/dev-tech-crypto
