Today I have had great pleasure in attending the Real World Crypto 2018
conference in Zürich in order to receive the Levchin prize on behalf of
the OpenSSL team. More details are available in my blog post here:
https://www.openssl.org/blog/blog/2018/01/10/levchin/
Matt
--
openssl-users mailing l
On 01/10/2018 02:37 PM, Karl Denninger wrote:
> On 1/10/2018 14:07, Benjamin Kaduk wrote:
>> On 01/10/2018 08:41 AM, Karl Denninger wrote:
>>> We start with a context that I load a dhparam file to (so I can take a
>>> DH connection) along with an edh curve, then set an acceptable cipher
>>> list fo
On 1/10/2018 14:07, Benjamin Kaduk wrote:
> On 01/10/2018 08:41 AM, Karl Denninger wrote:
>> We start with a context that I load a dhparam file to (so I can take a
>> DH connection) along with an edh curve, then set an acceptable cipher
>> list for it to use.
>>
> Why not just use AUTO_DH (the only
On 01/10/2018 08:41 AM, Karl Denninger wrote:
>
> We start with a context that I load a dhparam file to (so I can take a
> DH connection) along with an edh curve, then set an acceptable cipher
> list for it to use.
>
Why not just use AUTO_DH (the only option for 1.1.0, IIRC)?
> Assume I next manu
Hi,
Thanks Michael. I'll check if your proposal fits my requirement.
Regards,
Sanjaya
On Wed, Jan 10, 2018 at 7:55 PM, Michael Richardson
wrote:
>
> Sanjaya Joshi wrote:
> > Is there a BIO family of API that OpenSSL provides to bind to a
> > specific source IP address before creating a
On 10/01/18 09:24, Grace Priscilla Jero wrote:
> Thankyou Matt for the patch.
> It works fine now with the patch. In which release will you be including
> this patch?
The patch is already merged into the 1.1.0 branch so it will be in the
next release (1.1.0h).
Matt
>
> It is a negative scena
On 1/9/18 19:32, Viktor Dukhovni wrote:
This Key Usage is more appropriate. When the "Key Usage" is present in
a CA certificate, it*MUST* include "Certificate Sign".
That was indeed the problem. Thank you!! It seems strange to me that
OpenSSL will allow creation of a CA cert (CA:TRUE) that m
We start with a context that I load a dhparam file to (so I can take a
DH connection) along with an edh curve, then set an acceptable cipher
list for it to use.
Assume I next manually load both the CA store (using X509_STORE_add_cert
as many times as necessary to load the intermediate components a
Sanjaya Joshi wrote:
> Is there a BIO family of API that OpenSSL provides to bind to a
> specific source IP address before creating a socket connection (using
> for e.g. BIO_new_connect()) ?
I think not... BIO_new_connect() allocates the BIO, and so there isn't any
state to set up be
Thankyou Matt for the patch.
It works fine now with the patch. In which release will you be including
this patch?
It is a negative scenario setup on configuration.
Thanks,
Grace
On Fri, Jan 5, 2018 at 4:28 PM, Matt Caswell wrote:
>
>
> On 05/01/18 05:30, Grace Priscilla Jero wrote:
> > Hi Matt
10 matches
Mail list logo
