g similar or face possibility of breaking functionality if
OpenSSL 1.1.1 does go out with TLS 1.3 enabled by default and both ends
of the EAP connection have TLS 1.3 enabled.
--
Jouni MalinenPGP id EFC895FA
--
openssl-users mailing list
To unsubscri
On Wed, Mar 12, 2014 at 7:10 PM, David von Oheimb
david.von.ohe...@siemens.com wrote:
is anyone out there developing or planning an implementation of EST
(Enrollment over Secure Transport) in C/C++, making use of OpenSSL?
There's one implementation here:
On Fri, Feb 8, 2013 at 12:11 AM, T J jordan.tre...@gmail.com wrote:
TLS keying material exporter, i.e., SSL_export_keying_material(), will
make your life much easier if you are just looking for a mechanism to
derive suitable keys for other uses assuming you are using recent
enough OpenSSL.
On Thu, Feb 7, 2013 at 9:00 AM, Trevor Jordan jordan.tre...@gmail.com wrote:
From what I understand so far, the KeyBlock is the place to look for the
key? It's just a matter of getting the sizes and order of the individual
Keys and IV's so that I can extract the bits I need. Any pointers in
not look exactly clean.. Is there a better way to
figure out the MAC secret size (or even better, full key block size)
with OpenSSL?
--
Jouni MalinenPGP id EFC895FA
__
OpenSSL Project
operations more gracefully. Should you have additional
changes for FIPS mode operations, I would be interested in getting them
merged into the development tree.
--
Jouni MalinenPGP id EFC895FA
if
you could make the end pass whatever criteria FIPS has unless you do
this.
--
Jouni MalinenPGP id EFC895FA
__
OpenSSL Project http://www.openssl.org
User
in the latest wpa_supplicant release
(openssl-0.9.8i-tls-extensions.patch applies to OpenSSL 0.9.8k).
--
Jouni MalinenPGP id EFC895FA
__
OpenSSL Project