If you have an IANA "Private Enterprise Number", you can invent your
own OID (since you own an OID tree).
For example, mine is 1.3.6.1.4.1.22232. (To be explicit: you are NOT
authorized to invent any OID under this tree, as it belongs to me, not
you.)
http://pen.iana.org/pen/PenApplication.page
There are two cases. Sometimes a null pointer is used to indicate that some
value is not supplied or that the caller does not want some output stored. In
that case, the check must be done.
But many times a valid pointer must be supplied. In that case, I don't think
it is a necessarily a bug
The best thing to do is to crash ASAP so that the calling code is fixed.
Returning a run-time error turns out, in the long run, to not be useful --
the incorrect code never gets cleaned up, folks don't check return status,
and people complain "my code doesn't work."
/r$
--
Visiting Mem
Dear OpenSSL developers,
what is your policy regarding NULL pointer checks? Looking through the
code, I see some functions that receive a pointer parameter and
dereference it without checking for NULL first. Examples are
SSL_accept(SSL *s) or RSA_sign(..., RSA *rsa).
Do you consider such behavio
IBM submitetd a patch for AES-GCM and AES-CCM some months ago.
It's sitting in the request tracker, the later version with Aaron
Christensen's acceleration patches and NIST known answer tests is probably
the one you want.
Merging that into the OpenSSL code base (or not) is up to the OpenSSL team.
Dr. Stephen Henson wrote:
> One other note. Static-static DH IIRC has an unfortunate side effect: the
> sender can be traced because they have made use of their private key. Other
> algorithms such as RSA or ephemeral-static DH don't have this property.
>
> This issue was discussed in the S/MIME
2009/2/16 Maxim Masiutin :
> Hello Ger,
>
> Thank you for your reply, I was aware about the threads that you have posted,
> but didn't follow futher development.
>
> If RFC 2631 is R.I.P, should we move it to HISTORIC status?
>
> Is RFC 3278 alive? Which software support it and where can I take sa
version: openssl-0.9.9 (openssl-SNAP-20090209)
operating system: MS Windows XP
compiler: cl.exe (Microsoft Visual C++ 2008 Express Edition SP1)
file: crypto/x509/x509_cmp.c
Hi, in my application, next function causes a buffer overrun
unsigned long X509_NAME_hash(X509_NAME *x)
Hi,
I need an openssl server setup with PSK support for my experimentation. I
tried installing the openssl patch published in following forum and could
not get it working.
http://rt.openssl.org/Ticket/Display.html?id=1191&user=guest&pass=guest
# I tried downloading the latest version and compil
Recently (with commit of Jan 15 2009) MD5 hash function in
X509_NAME_hash was replaced by SHA1.
However local variable to hold computed hash value is still 16 bytes
(when 20 is required).
This causes stack corruption and segmentation faults on some platforms
(detected on Debian Linux 4.0 amd64)
Hello Stephen,
Thank you for your comment, I know that Elgamal doesn't have side effect of SS
DH. May I invent an OID for SS DH EC if I need to implement it? Should I write
a message to S/MIME mailing list?
--
Best regards,
Maxim Masiutinmailto:m...@ritlabs.com
___
On Mon, Feb 16, 2009, Maxim Masiutin wrote:
>
> I have a hardware token that uses static-static DH with elliptic curves (I
> cannot change anything in this token and cannot force it to use Elgamal).
> The mode of operation of this token is very similar to X9.42 DH, so I wanted
> to implement all
In message <49996161.3090...@cern.ch> on Mon, 16 Feb 2009 13:51:45 +0100,
Gerardo Ganis said:
gerardo.ganis>
gerardo.ganis>Dear developers,
gerardo.ganis>
gerardo.ganis>Using version 0.9.8j, compiled with option -DPURIFY, I get
from valgrind a warning about an
gerardo.ganis>unitia
Hello Ger,
Thank you for your reply, I was aware about the threads that you have posted,
but didn't follow futher development.
If RFC 2631 is R.I.P, should we move it to HISTORIC status?
Is RFC 3278 alive? Which software support it and where can I take samples of
X.509 certificates and keys wi
Hi,
Are there any plans to add support for AES-GCM and AES-CCM in openssl in
general and in the openssl-0.9.8 branch in particular?
--
R
_
Var sommaren för kort? Här hittar du solen!
http://resor.se.msn.com/
Hi,
I don't know if you are aware of these threads:
http://www.imc.org/ietf-smime/archive1/msg02805.html
and
http://www.vpnc.org/ietf-ipsec/99.ipsec/msg02021.html
Both are several well known people in the industry sharing a bit about
X9.42, which - at least to me - sounds like you might end up w
Dear developers,
Using version 0.9.8j, compiled with option -DPURIFY, I get from
valgrind a warning about an
unitialized variable at line 494 of ui_lib.c .
Looking at the code it looks like the field 'flags' of the 'UI'
structure is never initialized: in the
UI_new_method() all th
Hello Stephen,
Monday, February 16, 2009, 13:00:09, you wrote:
>>I can't see why anyone would want to use X9.42 DH these days.
I have a hardware token that uses static-static DH with elliptic curves (I
cannot change anything in this token and cannot force it to use Elgamal). The
mode of operat
On Mon, Feb 16, 2009, Maxim Masiutin wrote:
> Hello All,
>
>I'm trying to use Diffie-Hellman implementation from OpenSSL 0.9.8j to
>implement this algorithm for X.509 certificate to be used for S/MIME in
>The Bat! email client (www.ritlabs.com)
>
>Unfortunately, OpenSSL only gene
Hello All,
I'm trying to use Diffie-Hellman implementation from OpenSSL 0.9.8j to
implement this algorithm for X.509 certificate to be used for S/MIME in The
Bat! email client (www.ritlabs.com)
Unfortunately, OpenSSL only generates p and g parameters, without setting q
and j. Eric Young
Hi for all
How I can add new hash function to openssl ?
21 matches
Mail list logo