HI,
I have a query for SSl cipher on Openssl-1.0.1h
Have an application which is using library compiled with openssl-1.0.1h.
Application is failing in func SSL_CTX_set_cipher_list() when input is "
RC4-MD5+RC4-SHA" and it gets succeed when input is "RC4-SHA".
Not sure whether "RC4-MD5" is disable
On Wed, 25 Mar 2015 17:03:04 -0400
Steve Marquess wrote:
> I wasn't aware the Linux kernel (the real one, not proprietary
> commercial derivatives) had a "FIPS" mode. Please enlighten me.
It could very well be that the word 'mode' is not the right one.
'option' would perhaps be better. This art
On 03/25/2015 04:12 PM, jonetsu wrote:
> Hello,
>
> This is not about OpenSSL, although from experience, maybe some know
> the answer. Does anyone know if actual documentation exists for the
> Linux kernel FIPS mode apart from the source itself ? There is
> nothing in Documentation/ as per 3.18.2
On Wed, Mar 25, 2015 at 4:12 PM, jonetsu wrote:
> Hello,
>
> This is not about OpenSSL, although from experience, maybe some know the
> answer. Does anyone know if actual documentation exists for the Linux kernel
> FIPS mode apart from the source itself ? There is nothing in Documentation/
>
Hello,
This is not about OpenSSL, although from experience, maybe some know the
answer. Does anyone know if actual documentation exists for the Linux kernel
FIPS mode apart from the source itself ? There is nothing in Documentation/ as
per 3.18.2. - thanks.
Regards.
_
Hello,
When an application does not define OPENSSL_DRBG_DEFAULT_TYPE nor
OPENSSL_DRBG_DEFAULT_FLAGS nor any compilation options (if applicable), is the
default DRBG the 256 bit CTR AES (+ deviation function) in FIPS mode ?
Regards.
___
openssl-us
> I see Adam Langley's patch here:
> https://git.openssl.org/gitweb/?p=openssl.git;a=commitdiff;h=9a8646510b
>
> Any ideas why it was not accepted or not merged? (I'm assuming it was not
> merged because it was rejected for some reason).
I thought his patch came before the IETF final doc, which c
On Mon, Mar 23, 2015 at 10:36 AM, Salz, Rich wrote:
> It's unlikely to appear in 1.0.2 as it's a new feature.
>
> CloudFlare has posted patches that seem like they would drop in easily, for
> folks that want to do it; see
> https://blog.cloudflare.com/do-the-chacha-better-mobile-performance-with
Very helpful. Thank you Steve.
Dirk
On 25.03.2015 16:35, Dr. Stephen Henson wrote:
> On Wed, Mar 25, 2015, Dirk Menstermann wrote:
>
>> Hello,
>>
>> which API function can I use to obtain the bit strength of the key exchange
>> (size of the DH or ECDH parameters)?
>>
>> There is the function SSL
On Wed, Mar 25, 2015 at 03:32:08PM +, Dr. Stephen Henson wrote:
> > I am trying to implement server side caching support for sessions by
> > using callback functions. However, the callback functions are never
> > being called, even though connection happens successfully without
> > session res
On Wed, Mar 25, 2015, Dirk Menstermann wrote:
> Hello,
>
> which API function can I use to obtain the bit strength of the key exchange
> (size of the DH or ECDH parameters)?
>
> There is the function SSL_get_cipher_bits, but this is only for the symmetric
> cipher, not including the key exchange
On Wed, Mar 25, 2015, Sahib Jakhar wrote:
> Hi,
>
> I am trying to implement server side caching support for sessions by
> using callback functions. However, the callback functions are never
> being called, even though connection happens successfully without
> session resumption. For your referen
Hi,
I am trying to implement server side caching support for sessions by
using callback functions. However, the callback functions are never
being called, even though connection happens successfully without
session resumption. For your reference some of the sample code I am
pasting below:
ssl_ses
Hello,
which API function can I use to obtain the bit strength of the key exchange
(size of the DH or ECDH parameters)?
There is the function SSL_get_cipher_bits, but this is only for the symmetric
cipher, not including the key exchange.
Thanks
Dirk
__
14 matches
Mail list logo
