Hi,
I'm working on replacing res_crypto for a variety of reasons. It's a poor API
that's inflexible. It uses cryptographically deprecated methods and key sizes.
It doesn't support ECC. It isn't forward compatible with Openssl-3.0. It
doesn't have any test case coverage. etc.
I've identifi
Hi,
I'm working on some changes to various parts of Asterisk that currently don't
have good test coverage.
The easiest way (for what I'm doing) to add coverage is to interface with
external commands that are known to provide correct results and test against
them.
I've written a mockup of a fu
> On Apr 28, 2022, at 3:09 AM, Joshua C. Colp wrote:
>
> On Thu, Apr 28, 2022 at 2:18 AM Philip Prindeville
> wrote:
> Hi,
>
> I'm working on some changes to various parts of Asterisk that currently don't
> have good test coverage.
>
> The easiest
Hi,
I was trying to add test coverage to res_crypto using canned reference data,
but RSA encryption uses dynamic padding (OAEP or PKCSv1.5) to avoid generating
the same values each time, as this would be cryptographically weak and
susceptible to cryptanalysis.
There are other times where you m
Hi,
I was trying to figure out why builds on my laptop on Ubuntu 20.04 LTS and
Openssl 1.1.1f and 3.0 both succeed, but CI/CD is failing.
OpenSSL 1.0.2k-fips 26 Jan 2017
NAME="CentOS Linux"
VERSION="7 (Core)"
ID="centos"
ID_LIKE="rhel fedora"
VERSION_ID="7"
PRETTY_NAME="CentOS Linux 7 (Core)"
Hi,
> On May 14, 2022, at 1:54 PM, Joshua C. Colp wrote:
>
>> On Sat, May 14, 2022 at 2:04 PM Philip Prindeville
>> wrote:
>> Hi,
>>
>> I was trying to figure out why builds on my laptop on Ubuntu 20.04 LTS and
>> Openssl 1.1.1f and 3.0 both suc
> On May 15, 2022, at 8:46 AM, Dennis Buteyn wrote:
>
> On 5/14/22 20:01, Philip Prindeville wrote:
>> Why are we building against an EOL version of CentOS and an equally old
>> version of Openssl 1.0.x?
>
> CentOS 7 continues to receive maintenance updates
