----- Original Message ----- > From: "Viktor Dukhovni" <openssl-us...@dukhovni.org> > To: openssl-dev@openssl.org > Sent: Tuesday, June 10, 2014 4:54:26 PM > Subject: Re: [openssl.org #3384] Patch: add ECC strings to ciphers(1), point > out difference between DH and ECDH > > On Tue, Jun 10, 2014 at 02:33:00PM +0200, Hubert Kario via RT wrote: > > > Note that I've included also few other simple changes already present in > > master that are applicable to either the 1.0.1 or 1.0.2 code base. > > The differences between master and 1.0.x which I taken into account while > > backporting: > > > > * aRSA, kRSA and RSA groups behave differently in master and 1.0.x > > Which differences did you have in mind specificically for the above?
On second look, there is no difference in behaviour between 1.0.2 and master. I meant the change introduced by ffa45796 that made following update to ciphers(1): -=item B<kRSA>, B<RSA> +=item B<kRSA>, B<aRSA>, B<RSA> -cipher suites using RSA key exchange. +cipher suites using RSA key exchange, authentication or either respectively. I've assumed that it is correct with regards to master and just this functionality was not implemented in 1.0.1 or 1.0.2 (where I checked it). So this looks like a bug either in cipher suite parsing or in ciphers(1) man page, since kRSA == RSA, even in master branch. -- Regards, Hubert Kario ______________________________________________________________________ OpenSSL Project http://www.openssl.org Development Mailing List openssl-dev@openssl.org Automated List Manager majord...@openssl.org
