[openssl.org #668] Updated patch, make fallback optional

The attached patch makes fallback to software optional, controlled by either two new ENGINE_ctrl commands or by the OPENSSL_NCIPHER_FALLBACK environment variable. -- Colin Watson [EMAIL PROTECTED] Software EngineernCipher

Re: [PATCH] Fall back to software if nCipher hardware fails

On Fri, Sep 19, 2003 at 01:46:13PM -0400, Geoff Thorpe wrote: On September 19, 2003 01:16 pm, Colin Watson wrote: On Wed, Sep 17, 2003 at 10:23:46AM -0400, Geoff Thorpe wrote: In other words, I think the falling back to software should be configurable and should require the blessing of

RE: RSAUTL and PASSIN

Steve, Great news - where can I get a copy of the source indicated? Regards Andrew Stickland phone: +44 (0)1420 545031 mobile: +44 (0)7736 557126 mailto:[EMAIL PROTECTED] -Original Message- From: Dr. Stephen Henson [mailto:[EMAIL PROTECTED] Sent: 23 September 2003 22:37 To: [EMAIL

Re: BN_add_word bug

Otto Moerbeek wrote: Hi, Moin Otto, I've been working with the big number lib from the open ssl crypto library, and I have found the following problem, which is demonstrated by the program below (you may have to fix the includes if you test it on another platform than OpenBSD). Summary:

Re: BN_add_word bug

On Wed, 24 Sep 2003, Nils Larsch wrote: Otto Moerbeek wrote: Hi, Moin Otto, I've been working with the big number lib from the open ssl crypto library, and I have found the following problem, which is demonstrated by the program below (you may have to fix the includes if you

Re: BN_add_word bug

Otto Moerbeek wrote: Hmmm, did not try your patch yet, but here's another interesting case that doesn't use BN_bn2dec(): int g(void) { BIGNUM *a, *b; a = BN_new(); BN_set_word(a, 0); b = BN_new(); BN_set_word(b, 0); BN_add_word(b, 0);

Re: [PATCH] Fall back to software if nCipher hardware fails

Hi there, On September 24, 2003 06:37 am, Colin Watson wrote: [snip] I've gone for OPENSSL_NCIPHER_FALLBACK=off, which just turns off software fallback altogether. The new ENGINE control commands are more granular. [snip] Hm. After more thought, I observe that users who don't want

Re: BN_add_word bug

On Wed, 24 Sep 2003, Nils Larsch wrote: BN_cmp has a similiar problem. BN_cmp does not check if the top value is really correct (but it uses the top value nonetheless) i.e. leading zeros matters for BN_cmp. I think the best solution to avoid this is to let BN_add_word (BN_sub_word)