The attached patch makes fallback to software optional, controlled by
either two new ENGINE_ctrl commands or by the OPENSSL_NCIPHER_FALLBACK
environment variable.
--
Colin Watson [EMAIL PROTECTED]
Software EngineernCipher
On Fri, Sep 19, 2003 at 01:46:13PM -0400, Geoff Thorpe wrote:
On September 19, 2003 01:16 pm, Colin Watson wrote:
On Wed, Sep 17, 2003 at 10:23:46AM -0400, Geoff Thorpe wrote:
In other words, I think the falling back to software should be
configurable and should require the blessing of
Steve,
Great news - where can I get a copy of the source indicated?
Regards
Andrew Stickland
phone: +44 (0)1420 545031
mobile: +44 (0)7736 557126
mailto:[EMAIL PROTECTED]
-Original Message-
From: Dr. Stephen Henson [mailto:[EMAIL PROTECTED]
Sent: 23 September 2003 22:37
To: [EMAIL
Otto Moerbeek wrote:
Hi,
Moin Otto,
I've been working with the big number lib from the open ssl crypto
library, and I have found the following problem, which is demonstrated by
the program below (you may have to fix the includes if you test it on
another platform than OpenBSD).
Summary:
On Wed, 24 Sep 2003, Nils Larsch wrote:
Otto Moerbeek wrote:
Hi,
Moin Otto,
I've been working with the big number lib from the open ssl crypto
library, and I have found the following problem, which is demonstrated by
the program below (you may have to fix the includes if you
Otto Moerbeek wrote:
Hmmm, did not try your patch yet, but here's another interesting case that
doesn't use BN_bn2dec():
int g(void)
{
BIGNUM *a, *b;
a = BN_new();
BN_set_word(a, 0);
b = BN_new();
BN_set_word(b, 0);
BN_add_word(b, 0);
Hi there,
On September 24, 2003 06:37 am, Colin Watson wrote:
[snip]
I've gone for OPENSSL_NCIPHER_FALLBACK=off, which just turns off
software fallback altogether. The new ENGINE control commands are more
granular.
[snip]
Hm. After more thought, I observe that users who don't want
On Wed, 24 Sep 2003, Nils Larsch wrote:
BN_cmp has a similiar problem. BN_cmp does not check if the top value
is really correct (but it uses the top value nonetheless) i.e. leading
zeros matters for BN_cmp. I think the best solution to avoid this is
to let BN_add_word (BN_sub_word)