Re: [openssl-project] Entropy seeding the DRBG

2018-05-08 Thread Dr Paul Dale
Apologies for the name I’ve been sending under. I don’t represent Oracle of course. A temporary new MUA that isn’t quite doing what I expected. Pauli > On 8 May 2018, at 7:33 pm, Oracle wrote: > > Kurt wrote: > >> The comment about not hashing it is if you want to use

Re: [openssl-project] Help deciding on PR 6341 (facilitate reading PKCS#12 objects in OSSL_STORE)

2018-06-01 Thread Dr Paul Dale
I also believe that we shouldn’t be relying on locale, it is a Pandora’s box we don’t want to open. Even claiming that OpenSSL is UTF-8 compliant is probably a stretch (e.g. the isXXX functions aren’t). Saying we accept unsigned eight bit byte inputs and process them unmodified is as far as I’d

[openssl-project] Review

2018-10-29 Thread Dr Paul Dale
I’d like a prompt review of #7513 so I can push the second CVE out. #7512 is kind of related but not CVE level. Pauli ___ openssl-project mailing list openssl-project@openssl.org https://mta.openssl.org/mailman/listinfo/openssl-project

Re: [openssl-project] Review

2018-10-29 Thread Dr Paul Dale
Thanks, Richard. I’ll merge tomorrow and publish CVE 20181030. Pauli > On 29 Oct 2018, at 8:21 pm, Richard Levitte wrote: > > In message <785270db-e18c-4c5a-a961-765859cd6...@oracle.com> on Mon, 29 Oct > 2018 19:45:36 +1000, Dr Paul Dale said: > >> I’d like a

Re: [openssl-project] inline functions

2019-01-27 Thread Dr Paul Dale
and their instantiation and move the latter into its own C file. Pauli -- Dr Paul Dale | Cryptographer | Network Security & Encryption Phone +61 7 3031 7217 Oracle Australia > On 27 Jan 2019, at 8:33 pm, Tim Hudson wrote: > > From https://github.com/openssl/openssl/pull/7

Re: [openssl-project] inline functions

2019-01-27 Thread Dr Paul Dale
should have separate data structures for the different uses, each optimised for its specific usage. This would be a long path (and I’m hijacking this thread a bit), but it is something I’ve been wanting to do for a while now. Pauli -- Dr Paul Dale | Cryptographer | Network Security

Re: [openssl-project] inline functions

2019-01-27 Thread Dr Paul Dale
the DECLARE_LHASH_OF macro to prototype the functions. The .c file uses the DEFINE_LHASH_OF macro to create them. I chose lhash here because it is the simpler of the two, safestack has more options and is a bit more convoluted. I’m willing to make a stab at a PR for this. Pauli -- Dr Paul

Re: [openssl-project] inline functions

2019-01-27 Thread Dr Paul Dale
means we’ve a compatibility issue. The functions are in a public header, they can be used by any application. We need to continue supporting such use. Asking a user to add a DEFINE_ line is API breaking. I would be pro making such a change but we’d need to accept the consequences. Pauli --