Sorry, I've been on vacation for a week and am just getting caught up.
I'm adding the following to the FAQ:
2.22) What crypto does OpenIPMI implement/use?
OpenIPMI implements MD2 and MD5. It's questionable whether those
are crypto algorithms or not, but I'm including them just to be
sure.
For the IPMI 2.0 RMCP+ algorithms, OpenIPMI requires the OpenSSL
package. OpenIPMI will work without OpenSSL, but then it will not
be able to use the advanced encryption algorithms. The algorithms
used by OpenIPMI are: HMAC-SHA1 (96 bit) and HMAC-MD5 (128 bit)
for authentication and integrity. AES-CBC (128 bit) is the only option
for encryption. In the future, RC4 (40 bit and 128 bit) may be
implemented per the spec.
The OpenIPMI authentication/encryption framework is pluggable and
users could write their own algorithms if they wish.
Hope that helps.
-Corey
Fischer, Matthew L (SHML - Diagnostics) wrote:
> Please excuse my blastogram...
>
> I have been asked by our legal team to determine whether some debian
> packages contain or use crypto, for purposes of export licenses. I
> believe that openipmi does use some SSL libraries, but internally does
> it contain any cryptography algorithms? If this is documented
> somewhere, please point me to the doc instead.
>
> Thanks.
>
>
> _______________________________________________
> Openipmi-developer mailing list
> Openipmi-developer@lists.sourceforge.net
> https://lists.sourceforge.net/lists/listinfo/openipmi-developer
>
_______________________________________________
Openipmi-developer mailing list
Openipmi-developer@lists.sourceforge.net
https://lists.sourceforge.net/lists/listinfo/openipmi-developer
