On 08/07/2015 20:23, Salz, Rich wrote:
1. Is there any good reason to remove this code?
Yes. If it's not tested, reviewed, or in general use, then it's more likely to
be harmful (source of bugs) than useful.
That's an overly general criteria, and may be the source
of your mysterious marauding of the APIs.
To objectively consider the potential harm of rarely used
code, one must clearly determine if there is any way this
code could be invoked inadvertently or remotely. For
example the heartbeat code was obviously callable from
network packets (even if it had no bugs), so needed this
kind of cleanup, while the original eay DES API is only
invokable from code that knows about it, and would thus
not need to be removed for lack of use/testing.
2. Is this the OpenSSL name for the private key format
used by older Microsoft Authenticate tools (and thus
sometimes converted to/from PKCS#12 when switching
tool chains)?
I think only really old ISS, but that's why I asked.
I have no time to investigate, but I do not know the
origin of why the existing code would call it "RSA_NET".
I do know that the old format used by Authenticode was
the RSA specific variant of the CryptoAPI 1 structure
named simply PRIVATEKEYBLOB in Windows 2000
documentation.
3. Is this any of the formats used by SSH?
No; the seven characters "RSA_NET" do not appear in the openssh source.
Enjoy
Jakob
--
Jakob Bohm, CIO, Partner, WiseMo A/S. http://www.wisemo.com
Transformervej 29, 2860 Søborg, Denmark. Direct +45 31 13 16 10
This public discussion message is non-binding and may contain errors.
WiseMo - Remote Service Management for PCs, Phones and Embedded
_______________________________________________
openssl-users mailing list
To unsubscribe: https://mta.openssl.org/mailman/listinfo/openssl-users
