Hi, All,
We are working on AES-NI acceleration in OpenSSL. With the help of Andy,
we have pushed the AES-NI acceleration patches into OpenSSL CVS
development branch. But It seems that the patches have not been merged
by the 1.0.0 and/or 0.9.8 branches. So We have some questions:
- Is there any ru
On 2009.10.13 at 18:20:12 +0200, Dr. Stephen Henson wrote:
>
> There is some additional logic for CRLs though. In by_dir.c it stores the last
> suffix value of a CRL so if you have CRL links:
This logic have to be clearly documented in the X509_LOOKUP_hash_dir
manual page. I'd write what I've le
On Tue, Oct 13, 2009, Victor B. Wagner wrote:
> --- x509_lu.c.orig 2009-10-13 17:23:48.0 +0400
> +++ x509_lu.c 2009-10-13 17:24:15.0 +0400
> @@ -290,7 +290,7 @@
>
> tmp=X509_OBJECT_retrieve_by_subject(ctx->objs,type,name);
>
> -
"Dr. Stephen Henson" writes:
[...]
> I'd suggest you try OpenSSL 1.0.0 and the EVP interface instead.
Wouldn't it make sense for the truncation to be done in ECDSA_do_sign(),
as it is in dsa_do_sign()?
For the OP's question surely using the EVP interface isn't possible, is
it? AFAI for EVP o
thank you, very much!
Mounir IDRASSI wrote:
>
> Hi,
>
> In order to be able to sign a digest with ECDSA, the bit length of the
> digest value must be lesser than or equal to the bit size of field used
> in the elliptic curve.
> So, if you want to sign an SHA-256 digest, you must use an elli
On 2009.10.13 at 14:30:50 +0200, Dr. Stephen Henson wrote:
> On Mon, Oct 12, 2009, Victor B. Wagner wrote:
>
> >
> > 2. Make X509_LOOKUP_hash_dir lookup method honour cache field in the
> > X509_STORE structure. (I think that it is better to make this field
> > a bit mask and interpret constants
On Tue, Oct 13, 2009, Victor B. Wagner wrote:
>
> > In that vein we'd need to document X509_STORE_CTX, X509_verify_cert() and
> > X509_VERIFY_PARAM (and related functions). Some of this could just copy and
> > paste or point to some existing documentation for the verify utility.
>
> Now I'm atta
On 2009.10.13 at 14:12:22 +0200, Dr. Stephen Henson wrote:
> On Tue, Oct 13, 2009, Victor B. Wagner wrote:
>
> > On 2009.10.12 at 19:00:30 +0200, Dr. Stephen Henson wrote:
> >
> > >
> > > Well we are in the middle of a beta relase cycle so making incompatible
> > > changes and/or major new func
On Tue, Oct 13, 2009, Victor B. Wagner wrote:
> On 2009.10.12 at 19:00:30 +0200, Dr. Stephen Henson wrote:
>
> >
> > Well we are in the middle of a beta relase cycle so making incompatible
> > changes and/or major new functionality isn't an option.
>
> Is this (#2) a major new functionality, g
On Mon, Oct 12, 2009, Victor B. Wagner wrote:
>
> 2. Make X509_LOOKUP_hash_dir lookup method honour cache field in the
> X509_STORE structure. (I think that it is better to make this field
> a bit mask and interpret constants X509_LU_CERT and X509_LU_CRL as
> bit flags, but it would conflict with
On 2009.10.12 at 19:00:30 +0200, Dr. Stephen Henson wrote:
>
> Well we are in the middle of a beta relase cycle so making incompatible
> changes and/or major new functionality isn't an option.
Is this (#2) a major new functionality, given that cache field in
X509_CTX is already here and applica
There is a wrong cast in engines/ccgost/gost_crypt.c, line 374:
gost_destroy((gost_ctx *)ctx->cipher_data);
Must be:
gost_destroy(&((struct ossl_gost_cipher_ctx *)ctx->cipher_data)->cctx);
Regards
__
OpenSSL Pr
I am using ssldump to decrypt the traffic enrypted with cipher rc4_40_md5. I
see error with RSA_private_decrypt() function returning key length != 48.
What could be there reason? Any help is appreciated.
Thanks
-Raja
__
Hello,
Anyone implemented SHA256 for ssldump. I need this for my
current project, finding if anyone has done it. Can you
please share the patch, if it is already there.
Thanks
-Raja
__
OpenSSL Project
14 matches
Mail list logo