Hi,
Gopakumar Pillai wrote:
Hi,
Can any one point me to a location where I can find the major differences
between versions 0.9.8 and 1.0.x?
Now that 0.9.8 may not live for long, planning to move to 1.0.x versions.
Are they API compatible? Any other restrictions?
API changes timeline: http:/
On Tue, Mar 26, 2013, Walter H. wrote:
> the major features that 1.0.x supports are
>
> openssl cms (http://www.openssl.org/docs/apps/cms.html)
>
The CMS code is actually in OpenSSL 0.9.8 too but you need to explicitly
include the configuration option "enable-cms".
OpenSSL 1.0.0 and later enab
>From: owner-openssl-us...@openssl.org On Behalf Of Walter H.
>Sent: Tuesday, 26 March, 2013 15:16
>the major features that 1.0.x supports are
>openssl ts (http://www.openssl.org/docs/apps/ts.html)
>openssl cms (http://www.openssl.org/docs/apps/cms.html)
Although much of 'cms' was alread
I knew this was coming about the password and of course we take this password
and create a key through Password-based Key derivation but point is the
constant
changed and we should have used our own.
That was the only surprise for us. And yes I use AES_BLOCK_SIZE and other
constants
but you woul
Changed API symbols is only a subset of functionality changes, which is
why it is so useful that the OpenSSL project provides an actual list of
changes, formatted for human consumption.
But if you do want to look for hidden or undocumented changes, just
do a straight-forward text compare of the u
You are doing it very very wrong.
It has been known at least since the 1970s that trying to use ASCII
letters (with or without parity) directly as the encryption key is a
bad idea, because human entered text has only about 1 to 2 bits of
entropy per letter and even machine generated random text c
We've found that upstream-tracker.org was a good place to start.
Unfortunately, it only performs comparisons from one release to the
next, so what we did was download one of the tools that makes up
upstream-tracker and ran it against the specific release we were using
and the release to which w
You can also read the detailed list in the file "CHANGES" in the OpenSSL
source code download, that file lists the changes, version by version
going back several versions. However the file in the latest 1.0.x archive
does not list which fixes were made to 0.9.8 after work started on version
1.0.0
Well I discovered one thing this constant EVP_MAX_KEY_LENGTH changed when
using FIPS
from 32 to 64. The story is
I am using 0.9.8 and this constant to assure the password a person may use
by a user is
not larger than this for AES128 ciphering as undetermined results happen on
other platforms in o
the major features that 1.0.x supports are
openssl ts (http://www.openssl.org/docs/apps/ts.html)
openssl cms (http://www.openssl.org/docs/apps/cms.html)
Greetings,
Walter
On 26.03.2013 18:50, Gopakumar Pillai wrote:
Hi,
Can any one point me to a location where I can find the major
differen
10 matches
Mail list logo
