OpenSSL FIPS is used essentially as a crypto engine, except that it's
not called through the standard engine interface.
The FIPS module is validated to perform its advertised functions; if
it's in FIPS mode, OpenSSL will use its linked-in OpenSSL FIPS module
to perform all of its cryptographic ope
Hi,
Could someone please explain to me in simple terms the relationship between the
OpenSSL FIPS module and OpenSSL itself?
Is the FIPS module used by OpenSSL as a crypto engine or such like or am I way
off base here?
Thanks for any assistance or pointers.
Thanks,
Carl
On Thu, May 07, 2009 at 10:54:50AM -0700, Alex Chen wrote:
> How does openssl decide which SHA function to use if we simply uses ssl
> connection, i.e. what control the use of different SHA function?
There are no SHA-2 cipher-suites in TLS 1.0 and TLS 1.1. TLS 1.2
is very new, and not yet implem
At 10:54 AM 5/7/2009, you wrote:
How does openssl decide which SHA function to use if we simply uses
ssl connection, i.e. what control the use of different SHA function?
Is there a way users can select it?
Alex
The "crypto suite" used by SSL is negotiated between the parties, I
think. See
How does openssl decide which SHA function to use if we simply uses
ssl connection, i.e. what control the use of different SHA function?
Is there a way users can select it?
Alex
__
OpenSSL Project
70 KB is nothing nowadays. Besides each thread has its memory requirements, and
memory is supposed to increase the more threads you use. Even if the threads
reduce (lower load) memory may not go all the way back, because of global
structures that have grown due to the load. But after several cyc
After some investigation I've figured out that the memory leak isn't caused
by running Openssl in threads. However, after about 200 connections, may
vary, the used memory increases with around 70 kb. Is this normal? I guessed
it's allocated by the openssl library
2009/5/6 Fabian Bergmark
> Okey.
In engines/e_padlock.c
Somewhere you need to add an #endif .
I did so above the last 2 but I could be wrong.
--
Member - Liberal International This is doc...@nl2k.ab.ca
Ici doc...@nl2k.ab.ca God, Queen and country! Beware Anti-Christ rising!
Never Satan President Republic!
12 May BC vote Li
Hi David & OpenSSL-users,
We did compile against the new header files.
I checked this a little more on the Server side. On the Server side, I
use IIS 6.0.
It looks like even before it hits my Server side code, Windows may be
cutting the TCP connection.
The Server has Windows Server 2003, Ente
Hi David & OpenSSL-users,
We did compile against the new header files.
I checked this a little more on the Server side. On the Server side, I
use IIS 6.0.
It looks like even before it hits my Server side code, Windows may be
cutting the TCP connection.
The Server has Windows Server 2003, Ente
I use that function, and it does not remove padding.
1 - How would it even know what is padding and what is your data?
2 - Why do you think it removes the padding? The function does
not return a length.
Here's a really wild guess: Are you perhaps padding your data with
zeros and then usi
On 2009.05.07 at 09:26:34 +0400, Andrey Koltsov wrote:
> And one remark. This file "engines/ccgost/readme.gost" has an example
> configuration for GOST engine
>
>[gost_section]
>engine_id = gost
>dynamic_path = /usr/lib/ssl/engines/libgost.so
>default_algorithms = ALL
>crypt_
hi,How do we configure debug level / log level in openssl ? is there
any way by setting which i can get more information in the logs ?
Thanks
Anil
13 matches
Mail list logo
