On 2009-11-19 10:17 PST, Kai Chan wrote: > I'm using NSS 3.12.4 with NSPR 4.8 release. I want to generate keys and > certs with the basic supported ECC curves (nistp256, nistp384, nistp521) > included when NSS is compiled with the "NSS_ENABLE_ECC" flag. However, > when I try using certutil to generate certificates using the basic NIST > curves, I keep receiving the "security library failure" error. Is there > something in NSS that has to be patched or a step during configuration > that I missed? Could someone please verify the steps performed below > are correct: > > tar -xvf nss-3.12.4-with-nspr-4.8.tar.
Where did you get that file? > NSS_ENABLE_ECC=1; export NSS_ENABLE_ECC > cd nss-3.12.4-with-nspr-4.8/mozilla/security/nss > make nss_build_all > cd ~/nss_ecc > certutil -N -d . > certutil -G -k ec -q nistp256 -d . I did these same steps, except not on Linux, and I pulled the sources from the CVS repository rather than from a tar file. I built the same "basic ECC" build that you should have gotten, and ran the exact same command you ran. It worked fine for me. Maybe there's a bug in the Linux Basic ECC builds. I'm not aware of any. -- dev-tech-crypto mailing list dev-tech-crypto@lists.mozilla.org https://lists.mozilla.org/listinfo/dev-tech-crypto
