Good afternoon,
Our team is trying to get an accurate understanding of whether or not
cryptographic libraries are vulnerable to the kind of non-constant-time
attack used by exploits such as the one recently documented here:
On 07/26/2018 11:59 AM, Tomas Mraz wrote:
On Thu, 2018-07-26 at 10:33 -0400, Robert Moskowitz wrote:
On 07/26/2018 10:19 AM, Tomas Mraz wrote:
On Thu, 2018-07-26 at 10:10 -0400, Robert Moskowitz wrote:
On 07/26/2018 10:07 AM, Viktor Dukhovni wrote:
On Jul 26, 2018, at 9:01 AM, Robert
Thanks very much for valuable suggestions.
Few applciations like RADIUS/TACACS+/snmp protocol (IV generation for AES)
are using rand functions. As they are related to security, i am changing the
rand function used by them.
and as long as the 15 least-significant bits of the output of
Shameless self plug -- OpenSSL engine for 1.0.2, 1.1.0, and later:
https://github.com/romen/libsuola
BBB
On Thu, Jul 26, 2018 at 6:59 PM, Tomas Mraz wrote:
> On Thu, 2018-07-26 at 10:33 -0400, Robert Moskowitz wrote:
>>
>> On 07/26/2018 10:19 AM, Tomas Mraz wrote:
>> > On Thu, 2018-07-26 at
Hi,
I have seen message_len has checked here:
https://github.com/openssl/openssl/blob/master/crypto/ec/cur
ve448/eddsa.c#L164
(message_len > 0 && !EVP_DigestUpdate(hashctx, message, message_len)
But it has not checked here:
https://github.com/openssl/openssl/blob/master/crypto/ec/cur
My Fedora 28 shipped with:
OpenSSL 1.1.0h-fips 27 Mar 2018
Does that have ED25519 support?
It takes real time to set up my full test environment, and I really
don't have the time right now if I am going to have to see what is in
store for Fedora 29...
Thanks
--
openssl-users mailing list
On 07/26/2018 10:07 AM, Viktor Dukhovni wrote:
On Jul 26, 2018, at 9:01 AM, Robert Moskowitz wrote:
My Fedora 28 shipped with:
OpenSSL 1.1.0h-fips 27 Mar 2018
Does that have ED25519 support?
No. You'd need 1.1.1 for that, it is currently in beta.
No wonder Dr. Google failed me. I
> On Jul 26, 2018, at 9:01 AM, Robert Moskowitz wrote:
>
> My Fedora 28 shipped with:
>
> OpenSSL 1.1.0h-fips 27 Mar 2018
>
> Does that have ED25519 support?
No. You'd need 1.1.1 for that, it is currently in beta.
--
Viktor.
--
openssl-users mailing list
To unsubscribe:
On Thu, 2018-07-26 at 10:10 -0400, Robert Moskowitz wrote:
>
> On 07/26/2018 10:07 AM, Viktor Dukhovni wrote:
> >
> > > On Jul 26, 2018, at 9:01 AM, Robert Moskowitz > > m> wrote:
> > >
> > > My Fedora 28 shipped with:
> > >
> > > OpenSSL 1.1.0h-fips 27 Mar 2018
> > >
> > > Does that have
On 07/26/2018 10:19 AM, Tomas Mraz wrote:
On Thu, 2018-07-26 at 10:10 -0400, Robert Moskowitz wrote:
On 07/26/2018 10:07 AM, Viktor Dukhovni wrote:
On Jul 26, 2018, at 9:01 AM, Robert Moskowitz wrote:
My Fedora 28 shipped with:
OpenSSL 1.1.0h-fips 27 Mar 2018
Does that have ED25519
No, you need a 1.1.1 tree.
--
openssl-users mailing list
To unsubscribe: https://mta.openssl.org/mailman/listinfo/openssl-users
On Thu, 2018-07-26 at 10:33 -0400, Robert Moskowitz wrote:
>
> On 07/26/2018 10:19 AM, Tomas Mraz wrote:
> > On Thu, 2018-07-26 at 10:10 -0400, Robert Moskowitz wrote:
> > > On 07/26/2018 10:07 AM, Viktor Dukhovni wrote:
> > > > > On Jul 26, 2018, at 9:01 AM, Robert Moskowitz > > > > t.co
> > >
12 matches
Mail list logo