On Wed, Dec 11, 2002, Lutz Jaenicke via RT wrote: > > On Tue, Dec 10, 2002 at 02:14:13PM -0800, Sunitha Kumar wrote: > > Or, a more consise list with only AES, > > /usr/local/ssl/bin/openssl ciphers -tls1 > > AES > > ADH-AES256-SHA:DHE-RSA-AES256-SHA:DHE-DSS-AES256-SHA: > > AES256-SHA:ADH-AES128-SHA:DHE-RSA-AES128-SHA:DHE-DSS-AES128-SHA: > > AES128-SHA > > and, I don't find RSA_WITH_AES_128_SHA. Anybody have any pointers? thanks much, > > It's there, you just didn't note: > ljaenicke@lutz:~/newsoft/openssl-0.9.7-beta4/ssl$ grep RSA_WITH_AES_128 * > s3_lib.c: TLS1_TXT_RSA_WITH_AES_128_SHA, > s3_lib.c: TLS1_CK_RSA_WITH_AES_128_SHA, > s3_lib.c: TLS1_TXT_DH_RSA_WITH_AES_128_SHA, > s3_lib.c: TLS1_CK_DH_RSA_WITH_AES_128_SHA, > s3_lib.c: TLS1_TXT_DHE_RSA_WITH_AES_128_SHA, > s3_lib.c: TLS1_CK_DHE_RSA_WITH_AES_128_SHA, > tls1.h:#define TLS1_CK_RSA_WITH_AES_128_SHA 0x0300002F > tls1.h:#define TLS1_CK_DH_RSA_WITH_AES_128_SHA 0x03000031 > tls1.h:#define TLS1_CK_DHE_RSA_WITH_AES_128_SHA 0x03000033 > tls1.h:#define TLS1_TXT_RSA_WITH_AES_128_SHA "AES128-SHA" > tls1.h:#define TLS1_TXT_DH_RSA_WITH_AES_128_SHA "DH-RSA-AES128-SHA" > tls1.h:#define TLS1_TXT_DHE_RSA_WITH_AES_128_SHA "DHE-RSA-AES128-SHA" > > So the textual representation is "AES128-SHA", which does not state the RSA > authentication. > > Which brings up the next question: is there any reason for this inconsistency? > I will create a ticket... >
None of the static RSA ciphersuites include RSA in the textual representation. We should update ciphers manual page for the new AES stuff though. Steve. -- Dr. Stephen Henson [EMAIL PROTECTED] OpenSSL Project http://www.openssl.org/~steve/ ______________________________________________________________________ OpenSSL Project http://www.openssl.org Development Mailing List [EMAIL PROTECTED] Automated List Manager [EMAIL PROTECTED]