Re: FIPS AES self test
HI, Can you please let me know where can i get the FIPS Openssl test vectors (for both req and resp) for AES algo. Thanks, Ranjith On Wed, Jan 16, 2013 at 4:34 PM, Ranjith Kumar A. ranjith...@gmail.comwrote: Hi, Please help me in executing Openssl FIPS (1.2.3) AES self test manually. Thanks, Ranjith
[openssl.org #2929] Patch for recursive deadlock in x_pubkey.c [1.0.1c]
This appears to be a duplicate of ticket #2813 (which is fixed, but missed the 1.0.1c release by one day). __ OpenSSL Project http://www.openssl.org Development Mailing List openssl-dev@openssl.org Automated List Manager majord...@openssl.org
Re: FIPS AES self test
On 01/17/2013 04:33 AM, Ranjith Kumar A. wrote: HI, Can you please let me know where can i get the FIPS Openssl test vectors (for both req and resp) for AES algo. ... Please help me in executing Openssl FIPS (1.2.3) AES self test manually. Each platform (OE) for each validation requires a unique set of test vectors, so you will need to get those from your FIPS 140-2 accredited test lab after you have contracted to obtain a new validation. If you haven't done that yet there is no point in fooling with test vectors. For the 1.2 FIPS module that you reference pursuit of a new FPS 140-2 validation is no longer feasible, as the requirements have changed since the time that validation was obtained. You can see some representative 1.2 test vectors at: http://opensslfoundation.com/testing/validation-1.2/testvectors/ but, again, they are of no practical value today. -Steve M. -- Steve Marquess OpenSSL Software Foundation, Inc. 1829 Mount Ephraim Road Adamstown, MD 21710 USA +1 877 673 6775 s/b +1 301 874 2571 direct marqu...@opensslfoundation.com marqu...@openssl.com __ OpenSSL Project http://www.openssl.org Development Mailing List openssl-dev@openssl.org Automated List Manager majord...@openssl.org
[openssl.org #2959] Trivial Bug - Typo in apps/apps.h
- #define FORMAT_HTTP13 /* Dowload using HTTP */ + #define FORMAT_HTTP13 /* Download using HTTP */ -- Nick Lewis nick.le...@usa.g4s.com +44 1684 277137 www.g4stechnology.com New Challenge House, International Drive, Tewkesbury, Gloucestershire, GL20 8UQ, UK Please consider the environment before printing this email The details of this company are as follows: G4S Technology Limited, Registered Office: Challenge House, International Drive, Tewkesbury, Gloucestershire GL20 8UQ, Registered in England No. 2382338. This communication may contain information which is confidential, personal and/or privileged. It is for the exclusive use of the intended recipient(s). If you are not the intended recipient(s), please note that any distribution, forwarding, copying or use of this communication or the information in it is strictly prohibited. Any personal views expressed in this e-mail are those of the individual sender and the company does not endorse or accept responsibility for them. Prior to taking any action based upon this e-mail message, you should seek appropriate confirmation of its authenticity. This e-mail has been scanned for all viruses by MessageLabs. __ OpenSSL Project http://www.openssl.org Development Mailing List openssl-dev@openssl.org Automated List Manager majord...@openssl.org
Re: RSA_generate_key KEY_LENGTH
Annie pisze: On 14.01.2013 22:55, Dave Thompson wrote: Yes, but. By default (i.e. not using an engine, which may impose limits) you can generate an RSA keypair of practically any size you like. Hi Dave, you can try, but ... OpenSSL will give you not always the keysize back that you requested ;-) try e.g. openssl genrsa 1 OpenSSL returns not a 1-bit key, but -BEGIN RSA PRIVATE KEY- MCQCAQACAwEYTgIDAQABAgJMawIDAIwnAgECAgJMawIBAAICRhQ= -END RSA PRIVATE KEY- which is a 17-bit key with even(!) modulus. Regards, Ann. if I use 1024*3 length of key I get different size? On Key_gen not openssl comand line __ OpenSSL Project http://www.openssl.org Development Mailing List openssl-dev@openssl.org Automated List Manager majord...@openssl.org