[EMAIL PROTECTED] wrote: > > levitte 16-Feb-2002 13:17:14 > > Modified: crypto/objects Tag: OpenSSL_0_9_7-stable obj_dat.h obj_mac.h > obj_mac.num objects.txt > Log: > Adjust the NID names for the AES modes OFB and CFB to contain the number > of feedback bits >
While this is what is done with other ciphers I'd argue that it isn't strictly speaking correct. The NID is tied to an ASN1 OBJECT IDENTIFIER (OID). The OID (at least for CFB mode) doesn't represent the number of feedback bits just the cipher+mode combination. IMHO what we should really be doing is to provide get/set ctrls for the number of feedback bits in the same way this is done for some variable key length ciphers where the NID doesn't specify the key size. The "set" would give an error if an unsupported number of bits was requested: which would be anything other than the default number with the current code. Steve. -- Dr Stephen N. Henson. http://www.drh-consultancy.demon.co.uk/ Personal Email: [EMAIL PROTECTED] Senior crypto engineer, Gemplus: http://www.gemplus.com/ Core developer of the OpenSSL project: http://www.openssl.org/ Business Email: [EMAIL PROTECTED] PGP key: via homepage. ______________________________________________________________________ OpenSSL Project http://www.openssl.org Development Mailing List [EMAIL PROTECTED] Automated List Manager [EMAIL PROTECTED]
