On Fri, Jul 01, 2016, Stephan M?hlstrasser wrote:
> Hi,
>
> we are testing OpenSSL interoperability with a third-party
> application, and we cannot decrypt a CMS object that is encrypted by
> the third-party application with a prime256v1 elliptic-curve
> certificate.
>
> I have attached the foll
Dear Users,
I have released version 5.34 of stunnel.
This release includes a major security bugfix.
The ChangeLog entry:
Version 5.34, 2016.07.05, urgency: HIGH
* Security bugfixes
- Fixed malfunctioning "verify = 4".
* New features
- Bind sockets with SO_EXCLUSIVEADDRUSE on WIN32.
- Added
Well, since we will never go to 1.1, I guess we don't have to worry about it.
From: openssl-users on behalf of Kurt
Roeckx
Sent: Saturday, July 2, 2016 5:53:20 AM
To: openssl-users@openssl.org
Subject: Re: [openssl-users] DSA with OpenSSL-1.1
On Fri, Jul 01, 20
Hi!
I had a look into Apache Santuario. A XML-Security-Framework using OpenSSL.
For my eyes it looks like only OAEP with MGF SHA1 is supported out of
the OpenSSL-box.
Other digests need to be handeled manually.
In Santuario they wrote an own RSA_padding_check_PKCS1_OAEP with 2 new
parameters
