> [levitte - Tue Nov 23 04:06:16 2010]: > > 1) seems simple enough. >
As regards this it should be possible to provide alternative ENGINE implementations of keyed hashes. OpenSSL 1.0.0 includes a generalised keyed mac interface accessible via EVP (and hence theoretically redirectable to an ENGINE) of which HMAC is just one special case. The GOST MAC is an example of a MAC type entirely implemented in an ENGINE. I've not had time to include an example of how to do this with HMAC and iron out any bugs in it yet though. Steve. -- Dr Stephen N. Henson. OpenSSL project core developer. Commercial tech support now available see: http://www.openssl.org ______________________________________________________________________ OpenSSL Project http://www.openssl.org Development Mailing List [email protected] Automated List Manager [email protected]
