On 06/08/14 19:32, Mukesh Yadav wrote:
> Hi,
>
> AES_GCM is supported on OpenSSL-1.0.1
> Regarding support on OpenSSL-0.9.8, have found patch on link below.
> http://rt.openssl.org/Ticket/Display.html?id=2092&user=guest&pass=guest
>
> From various opensource discussion, it seems it cleanly apply to old
> version.
> Is it ok for this patch to be used on older versions or in order to use
> AES_GCM, upgrade to new openssl is mandatory?
>
As you have pointed out AES-GCM is supported in OpenSSL 1.0.1. There is
no intention for it to be added to any previous version.
If you find an old patch in RT that appears to apply cleanly to an older
version then use of that patch is entirely up to you. It won't be
supported by OpenSSL and I wouldn't recommend its use. Clearly it will
not receive security updates and will be completely untested in that
version.
If you need GCM then I strongly recommend you use 1.0.1.
Matt
__
OpenSSL Project http://www.openssl.org
User Support Mailing Listopenssl-users@openssl.org
Automated List Manager majord...@openssl.org
