Re: [openssl.org #3138] 80-bit Elliptic Curves with !MEDIUM !LOW !EXP cipher list

2013-10-12 Thread noloa...@gmail.com via RT
Perhaps there should be a ECLOW, ECMEDIUM, and ECHIGH. Curves with 80-bits of security (e.g., secp160) would be low; while 256-bits of security (e.g., secp521) would be high. I'm not sure how to slice the 128- and 192- bits of security, though. Perhaps a medium-low and medium-high? On Mon, Oct 7,

Re: [openssl.org #3139] Bug in AES XTS implementation for Windows x64 (truncating pointer to IV)

2013-10-12 Thread Andy Polyakov via RT
> File: openssl/crypto/aes/asm/bsaes-x86_64.pl > Function: bsaes_xts_[en|de]crypt > Commit: fa104be35e24f3fea895d55bb7042d6f4b2963e9 > > Pointer to IV is pulled to $arg6 (line 2109): > mov0xa8(%rsp),$arg6# pull ivp > > However, for x64 $arg6 is defined as r11d (line 1155): > my ($

sha256-mips.S:1960: Error: opcode not supported on this processor: mips1 (mips1) `bnel $5,$23,.Loop'

2013-10-12 Thread Hauke Mehrtens
In OpenWrt we have a build error in the openssl sha256 code on MIPS I. /usr/bin/perl asm/sha1-mips.pl o32 sha1-mips.S mipsel-openwrt-linux-uclibc-gcc -O2 -pipe -mtune=r5000 -fno-caller-saves -fhonour-copts -Wno-error=unused-but-set-variable -msoft-float -fpic -c -c -o sha1-mips.o sha1-mips.S /us

RE: [openssl.org #3138] 80-bit Elliptic Curves with !MEDIUM !LOW !EXP cipher list

2013-10-12 Thread Salz, Rich
> I'm not sure how to slice the 128- and 192- bits of security, though. Perhaps > a medium-low and medium-high? This is one reason why subjective terms like "low" should be avoided. The other being that the definitions shift over time. /r$ -- Principal Security Engineer Akamai Techno

Re: sha256-mips.S:1960: Error: opcode not supported on this processor: mips1 (mips1) `bnel $5,$23,.Loop'

2013-10-12 Thread Andy Polyakov
In OpenWrt we have a build error in the openssl sha256 code on MIPS I. For reference, I've never tested MIPS modules on pre-III, and therefore feedback for earlier generations is appreciated. It was tested to compile for MIPS II though, for IRIX account. /usr/bin/perl asm/sha512-mips.pl o32

Re: sha256-mips.S:1960: Error: opcode not supported on this processor: mips1 (mips1) `bnel $5,$23,.Loop'

2013-10-12 Thread Hauke Mehrtens
On 10/13/2013 12:14 AM, Andy Polyakov wrote: >> In OpenWrt we have a build error in the openssl sha256 code on MIPS I. > > For reference, I've never tested MIPS modules on pre-III, and therefore > feedback for earlier generations is appreciated. It was tested to > compile for MIPS II though, for I