subject:"\[openssl\-dev\] \[openssl.org #3975\] The CMS encrypt command uses the wrong ASN.1 encoding for the AES\-GCM algorithm parameter."

[openssl-dev] [openssl.org #3975] The CMS encrypt command uses the wrong ASN.1 encoding for the AES-GCM algorithm parameter.

2015-09-11 Thread Stephen Henson via RT

GCM mode isn't currently supported in CMS, it was a bug that it attempted to use it and produced incorrect results. Resolved now to return an error for GCM. Steve. -- Dr Stephen N. Henson. OpenSSL project core developer. Commercial tech support now available see: http://www.openssl.org

[openssl-dev] [openssl.org #3975] The CMS encrypt command uses the wrong ASN.1 encoding for the AES-GCM algorithm parameter.

2015-07-31 Thread Laetitia Baudoin via RT

When using 'openssl cms -encrypt -aes-256-gcm' the algorithm generated is encoded as: SEQUENCE(2 elem) OBJECT IDENTIFIER2.16.840.1.101.3.4.1.46 OCTET STRING(12 byte) But RFC 5084 (Using AES-CCM and AES-GCM Authenticated Encryption in the Cryptographic Message Syntax