Re: AES GCM considerations in regards to SP800-38D

2013-08-19 Thread Ben Laurie
On 15 August 2013 09:21, Tomas Mraz tm...@redhat.com wrote: Hello OpenSSL developers, in a review of the AES GCM code it was found that there might be some requirements that are placed by SP800-38D document missing. Especially there is no checking that the key is not used with more than

RE: [openssl.org #3111] bug report: ERR garbage data

2013-08-19 Thread Salz, Rich
That's a nice small sample program, but your input doesn't decode ; openssl enc -des-cbc -d -k mykey earth.obj.enc bad magic number exit 1 -- Principal Security Engineer Akamai Technology Cambridge, MA

Re: AES GCM considerations in regards to SP800-38D

2013-08-19 Thread Michael Sierchio
On Sun, Aug 18, 2013 at 2:08 PM, Ben Laurie b...@links.org wrote: On 15 August 2013 09:21, Tomas Mraz tm...@redhat.com wrote: ... Especially there is no checking that the key is not used with more than 2^32 different IV values. Did I overlook it and the test is there? Or is the test not

CMAC with EVP

2013-08-19 Thread Leon Brits
Hi all, I've been (re)implementing all the ciphers we use to make use of EVP structures. On the wiki (http://wiki.openssl.org/index.php/EVP_Key_and_Parameter_Generation) there is an example to use EVP_PKEY for CMAC. I am a bit confused on the intention of this: Basically, how do I use this

Re: bsdmake mystery

2013-08-19 Thread Ben Laurie
Thanks for this ... haven't had the chance to test it yet (travel) but will do shortly. On 12 August 2013 05:49, Andy Polyakov ap...@openssl.org wrote: I'm trying to figure out why bsdmake on MacOS does this using the standard Makefiles: cc -c -I. -I.. -I../include -DOPENSSL_THREADS

Re: CMAC with EVP

2013-08-19 Thread Dr. Stephen Henson
On Mon, Aug 19, 2013, Leon Brits wrote: Hi all, I've been (re)implementing all the ciphers we use to make use of EVP structures. On the wiki (http://wiki.openssl.org/index.php/EVP_Key_and_Parameter_Generation) there is an example to use EVP_PKEY for CMAC. I am a bit confused on the

Re: [openssl.org #3038] [PATCH]: Fix warning-level alert handling in 0.9.8

2013-08-19 Thread mancha
mancha mancha1 at hush.com writes: Yet another bug report I came upon by accident (not an Ubuntu user): https://bugs.launchpad.net/ubuntu/+source/openssl/+bug/1144408 From the report I gather this issue affects all users of Ubuntu's Lucid version. A few more folks discussing problems

Re: CMAC with EVP

2013-08-19 Thread Matt Caswell
On Mon, Aug 19, 2013, Leon Brits wrote: Hi all, I've been (re)implementing all the ciphers we use to make use of EVP structures. On the wiki (http://wiki.openssl.org/index.php/EVP_Key_and_Parameter_Generation) there is an example to use EVP_PKEY for CMAC. I am a bit confused on the