Search results

From OpenSSLWiki
Jump to navigationJump to search

Create the page "$1" on this wiki! See also the search results found.

Page title matches

  • SHA-1
    97 bytes (11 words) - 23:03, 28 April 2017

Page text matches

  • FIPS mode set()
    ...ues, a program is encouraged to call FIPS_mode_set() with a ONOFF value of 1 (rather than an arbitrary non-zero value). ...FIPS Object Module successfully exits FIPS mode, the function will return 1.
    3 KB (512 words) - 08:27, 15 January 2015
  • EVP Asymmetric Encryption and Decryption of an Envelope
    if(1 != EVP_SealInit(ctx, EVP_aes_256_cbc(), encrypted_key, encrypted_key_len, iv, pub_key, 1))
    4 KB (641 words) - 22:58, 28 April 2017
  • EVP Authenticated Encryption and Decryption
    if(1 != EVP_EncryptInit_ex(ctx, EVP_aes_256_gcm(), NULL, NULL, NULL)) if(1 != EVP_CIPHER_CTX_ctrl(ctx, EVP_CTRL_GCM_SET_IVLEN, iv_len, NULL))
    13 KB (1,791 words) - 04:48, 5 June 2019
  • EVP Message Digests
    if(1 != EVP_DigestInit_ex(mdctx, EVP_sha256(), NULL)) if(1 != EVP_DigestUpdate(mdctx, message, message_len))
    3 KB (434 words) - 01:51, 12 January 2022
  • AES
    <pre>$ grep -IR EVP_aes * | sed 's/.*\(EVP_aes[^( ;,]*\).*/\1()/; /#/ d' | sort | uniq
    1 KB (200 words) - 16:24, 5 January 2017
  • DER
    DER is a binary format for data structures described by ASN.1. ...chosen for security since there is only one possible encoding given a ASN.1. encoding (which is not the case for BER used in ldap, for example).
    6 KB (693 words) - 23:23, 14 January 2022
  • FIPS mode()
    ...Effectively, any non-zero value indicates FIPS mode. Values other than <tt>1</tt> may have additional significance, such as designating an additional re ...n from an application linked to OpenSSL versions <tt>1.1.0</tt> or <tt>1.1.1</tt> will always return <tt>0</tt>, indicating non-FIPS mode, with an error
    2 KB (374 words) - 19:03, 9 August 2019
  • EVP Signing and Verifying
    '''''Note''''': CMAC is only supported since the version 1.1.0 of OpenSSL. ...gle.com/forum/#!topic/mailing.openssl.users/1_TFpK6XzQ4 DSA with OpenSSL-1.1] on the mailing list.
    11 KB (1,688 words) - 10:08, 28 April 2020
  • Self Test Failures
    ...1.1.0 and above. This page focuses on the second generation, or OpenSSL 1.1.0 and above. == OpenSSL 1.1.0 ==
    8 KB (1,289 words) - 16:17, 9 February 2020
  • Related Links
    {| class="wikitable sortable" border="1" {| class="wikitable sortable" border="1"
    7 KB (964 words) - 18:13, 6 July 2015
  • HP-UX Itanium FIPS and OpenSSL build
    The [http://csrc.nist.gov/groups/STM/cmvp/documents/140-1/140sp/140sp1747.pdf OpenSSL FIPS 140-2 Security Policy] details the way to 2 Intel(R) Itanium 2 processors (1.5 GHz, 6 MB)
    6 KB (930 words) - 08:45, 21 April 2014
  • FIPS module 3.0
    1. Any "light" or other versions of the FIPS module (i.e fewer algorithm impl
    775 bytes (113 words) - 02:12, 1 October 2018
  • Libcrypto API
    ...n integer to indicate success or failure. Typically a function will return 1 on success or 0 on error. All return codes should be checked and handled as if(1 != EVP_xxx()) goto err;
    6 KB (896 words) - 03:30, 10 December 2014
  • Testing and Development Tools and Tips
    return 1 elif test ! -d $1; then
    6 KB (873 words) - 23:49, 19 July 2014
  • STACK API
    int single; /* 0 for a set, 1 for a single item (which is wrong) */ /* 1 */ ASN1_TYPE *single;
    3 KB (516 words) - 00:07, 14 January 2014
  • Configuration "packages"
    == z/OS [OpenSSL 1.1.1] == OpenSSL 1.1.1 isn't supported on z/OS.
    3 KB (433 words) - 08:47, 31 July 2020
  • EVP Key and Parameter Generation
    if (EVP_PKEY_CTX_ctrl(kctx, -1, EVP_PKEY_OP_KEYGEN, if (EVP_PKEY_CTX_ctrl(kctx, -1, EVP_PKEY_OP_KEYGEN,
    3 KB (522 words) - 11:58, 12 February 2021
  • Elliptic Curve Diffie Hellman
    if(1 != EVP_PKEY_paramgen_init(pctx)) handleErrors(); if(1 != EVP_PKEY_CTX_set_ec_paramgen_curve_nid(pctx, NID_X9_62_prime256v1)) hand
    10 KB (1,677 words) - 12:25, 10 March 2014
  • OpenSSL 1.1.0 Changes
    This page discusses the API changes for OpenSSL version 1.1. The overall goal of the API changes is to make many data structures opaque ...r provides OpenSSL 1.1.0 functions, like <tt>RSA_get0_key</tt>, to OpenSSL 1.0.2 clients. The source code is available for download below
    16 KB (2,507 words) - 22:23, 3 April 2017
  • SSL MODE SEND FALLBACK SCSV
    ...use defects in the down level protocols to carry out other attacks. Table 1 below lists some of the losses that could occur when traversing down protoc {| class="wikitable" border="1"
    7 KB (1,114 words) - 22:59, 17 October 2014
  • Security Advisories
    {| class="wikitable sortable" border="1" | OpenSSL-0.9.8a-y, OpenSSL-1.0.0a-l, OpenSSL-1.0.1a-g
    2 KB (249 words) - 17:58, 8 June 2014
  • SSL OP SAFARI ECDHE ECDSA BUG
    ...for OpenSSL ''greater than'' 1.0.1e, ''greater than'' 0.9.8y, 1.0.2, and 1.1.0. For updated versions of OpenSSL, the option is included in <tt>SSL_OP_AL ...g <tt>cipher_list</tt> work around should be possible for those who would (1) like a fix before OpenSSL releases its next stable versions, or (2) don't
    4 KB (589 words) - 02:00, 11 December 2013
  • Diffie Hellman
    ...eased versions - support is available in the as yet unreleased 1.0.2 and 1.1.0) ...lman (OpenSSL will have built-in support for these parameters from OpenSSL 1.0.2 - not yet released)
    9 KB (1,422 words) - 14:34, 13 February 2021
  • Elliptic Curve Cryptography
    ...have identity elements. So, for example 0 and 1 where: a + 0 = a, and a * 1 = a ...lar (or clock) arithmetic. So, if p=7 then the elements of the set are {0, 1, 2, 3, 4, 5, 6} and:
    18 KB (3,074 words) - 02:26, 29 July 2019
  • Cryptogams SHA
    ...evelopers. This wiki article will show you how to use Cryptogams ARMv4 SHA-1 implementation. According to the head notes the ARMv4 implementation runs a ...vp/e_sha_cbc_hmac_sha1.c:615: sha1_block_data_order(&key->md, data, 1);
    15 KB (2,434 words) - 06:10, 14 March 2021
  • EVP Symmetric Encryption and Decryption
    ...ose further down the page. Note that this uses the auto-init facility in 1.1.0. if(1 != EVP_EncryptInit_ex(ctx, EVP_aes_256_cbc(), NULL, key, iv))
    14 KB (2,119 words) - 10:27, 15 May 2023
  • Hostname validation
    ...he code is beginning to see widespread testing as the release of OpenSSL 1.1.0 approaches. ...te. Versions prior to 1.0.2 did not perform hostname validation. Version 1.0.2 and up contain support for hostname validation, but they still require
    11 KB (1,531 words) - 19:15, 28 April 2018
  • SECADV 20140605
    {| class="wikitable" border="1" | OpenSSL-0.9.8a-y, OpenSSL-1.0.0a-l, OpenSSL-1.0.1a-g
    2 KB (297 words) - 19:21, 6 June 2014
  • Creating an OpenSSL Engine to use indigenous ECDH ECDSA and HASH Algorithms
    ...orial is done on an (X)Ubuntu 15.04, with custom compiled OpenSSL version 1.0.2d. The GCC version is: return 1;
    33 KB (4,951 words) - 08:57, 7 March 2019
  • Library Errors
    ...t_default</tt> is a macro). Other APIs, such as <tt>RAND_bytes</tt> return 1 for success, and 0 otherwise. Ignoring the function's return value means yo
    2 KB (373 words) - 17:29, 24 March 2013
  • Library Initialization
    ..., then you would use <tt>SSL_library_init</tt>. If you are using OpenSSL 1.1.0 or above, then the library will initialize itself automatically. Optional ...this page discusses initializing the library in 1.0.2. If you are using 1.1.0 or above then you don't need to take any further steps.
    16 KB (2,713 words) - 14:30, 16 October 2020
  • Simple TLS Server
    if (listen(s, 1) < 0) { while(1) {
    6 KB (908 words) - 13:16, 8 November 2022
  • Random Numbers
    ...is at most 38%. Some estimates have shown English characters provide only 1 bit/byte (or 12%). Other sources used as a random stream will have differen ...ly random data can be thought of as a sequence of binary digits where each 1 or 0 is the result of flipping a perfectly fair, unbiased coin. Such a sequ
    27 KB (4,265 words) - 02:33, 27 July 2019
  • SECADV 20140407
    {| class="wikitable" border="1" | OpenSSL-1.0.1a to OpenSSL-1.0.1f
    3 KB (460 words) - 23:30, 5 June 2014
  • Cryptogams AES
    33 unsigned long rd_key[4 * (AES_MAXNR + 1)]; 35 unsigned int rd_key[4 * (AES_MAXNR + 1)];
    18 KB (2,869 words) - 06:09, 14 March 2021
  • List of SSL OP Flags
    ! Option Name !! Description !! 1.0.2 value !! 1.1.0 value !! 1.1.1 value !! 3.0 value ...he application. || Not defined || Not defined || Not defined || SSL_OP_BIT(1)
    12 KB (1,789 words) - 20:51, 5 August 2021
  • Binaries
    {| class="wikitable sortable" border="1" | Pre-compiled Win32/64 1.0.2, 1.1.0, 1.1.1 and 3.0 libraries without external dependencies, primarily built for Franç
    7 KB (1,081 words) - 07:30, 11 April 2024
  • Diffie-Hellman parameters
    if (1 != SSL_CTX_set_tmp_dh (ctx, dh)) ...ake-give-could-not-generate-dh-keypair-exception versions of Java prior to 1.7 don't support Diffie-Hellman parameters longer than 1024 bits]!
    13 KB (2,037 words) - 20:55, 12 May 2021
  • SSL/TLS Client
    ...nSSL [http://www.openssl.org/news/changelog.html Change Log] for OpenSSL 1.1.0 states you can use <tt>-verify_name</tt> option, and <tt>apps.c</tt> offe .../poodleagain.html The POODLE bites again]. The short version: use only TLS 1.2, use only ephemeral key exchanges, and use only AEAD ciphers (like AES/GC
    24 KB (3,955 words) - 15:33, 12 December 2022
  • How to Integrate a Symmetric Cipher
    ...a guideline on how to integrate a symmetric block cipher into OpenSSL 1.1.1. This integration procedure will cover all aspects of integration for both 1, EVP_RC4_KEY_SIZE, 0,
    31 KB (4,394 words) - 07:22, 18 April 2021
  • FIPS mode and TLS
    This page discusses the use of FIPS with OpenSSL 1.0.x. It is NOT relevant to the FIPS provider in OpenSSL 3.0 or above. This discussion assumes use of a "FIPS capable" OpenSSL 1.0.1f or later.
    21 KB (3,420 words) - 08:32, 2 February 2024
  • SSL and TLS Protocols
    It is recommended to run TLSv1.0, 1.1 or 1.2 and fully disable SSLv2 and SSLv3 that have protocol weaknesses. What TLS 1.2 rfc says :
    10 KB (1,499 words) - 16:23, 27 June 2017
  • Android
    ...versions of OpenSSL (they should work for OpenSSL 1.0.2). For OpenSSL 1.1.1 see the INSTALL and NOTES.ANDROID files in the source distribution. ...OpenSSL library for Android. Before running the commands download openssl-1.0.1g.tar.gz and [[Media:setenv-android.sh|setenv-android.sh]]; place the fi
    14 KB (2,159 words) - 07:22, 3 December 2019
  • Defect and Feature Review Process
    1) The person triaging the report assigns a severity:
    4 KB (745 words) - 00:08, 30 April 2014
  • Command Line Elliptic Curve Operations
    ...t "aes-128-cbc" with any other valid openssl cipher name (see [[Manual:enc(1)]] for a list of valid cipher names). To convert a PKCS8 file to a traditio Cofactor: 1 (0x1)
    12 KB (1,898 words) - 13:10, 24 December 2018
  • FIPS Library and Android
    ...OpenSSL FIPS Capable library. Before running the commands download openssl-1.0.1e.tar.gz, openssl-fips-2.0.5.tar.gz and [[Media:setenv-android.sh|setenv $ rm -rf openssl-1.0.1e/
    24 KB (3,788 words) - 07:23, 3 December 2019
  • How To Write Unit Tests For OpenSSL
    * 1. Redistributions of source code must retain the above copyright int setup_ok = 1;
    13 KB (2,051 words) - 11:03, 10 August 2017
  • Unit Testing
    1) Run much, much faster at link time (not a minor consideration for most of Last time I checked, there was a minor improvement for GNU ld for #1, but it's trivial compared to Windows and HP's link editor, e.g. (I can't o
    15 KB (2,536 words) - 10:35, 26 October 2015
  • OpenSSL 3.0
    == Main Changes in OpenSSL 3.0 from OpenSSL 1.1.1 == ...with OpenSSL 3.0 if those applications previously worked with OpenSSL 1.1.1. However this is not guaranteed and some changes may be required in some ca
    54 KB (7,479 words) - 12:36, 20 September 2021
  • Random fork-safety
    '''The situation has changed greatly, starting with OpenSSL 1.1.1 which completely rewrote RNG. The concerns below do not really apply any m seed[1] = (long long)getpid();
    7 KB (1,139 words) - 18:56, 12 March 2021
  • Command Line Utilities
    |style="padding: 4px;" | Parse an ASN.1 sequence. ...px;" | Message Digest calculation. MAC calculations are superseded by mac(1).
    35 KB (5,360 words) - 11:56, 24 June 2022
  • FIPS Build Guidelines
    The [http://csrc.nist.gov/groups/STM/cmvp/documents/140-1/140sp/140sp1747.pdf Security Policy] document defines a very specific proce ...he Security Policy and [http://csrc.nist.gov/groups/STM/cmvp/documents/140-1/140val-all.htm#1747 NIST CMVP web site entry] also clearly state that the s
    8 KB (1,197 words) - 11:35, 12 March 2014
  • FIPS module 2.0
    ...-2012. This 2.0 FIPS module is compatible with OpenSSL releases 1.0.1 and 1.0.2, and not with any other releases. |AcanOS 1.0 running on Feroceon 88FR131 (ARMv5) (gcc Compiler Version 4.5.3)
    19 KB (2,634 words) - 10:25, 20 October 2022
  • Fipsld and C++
    ...demonstrates the procedures on Debian 7.3 (x64) using OpenSSL FIPS Capable 1.0.1f and the FIPS Object Module 2.0.5. The example demonstrates Clang and C <pre># # Download and verify signature on openssl-1.0.1f.tar.gz
    17 KB (2,747 words) - 19:02, 17 March 2014
  • Compilation and Installation
    ...e instructions below apply to it. Second is the build system for OpenSSL 1.1.0 and above. The instructions are similar, but not the same. For example, t ...y performs as expected under its self tests. If you are building OpenSSL 1.1.0 and above, then you will also need PERL 5.10 or higher (see <tt>README.PE
    35 KB (5,320 words) - 13:58, 16 April 2021
Retrieved from "https://wiki.openssl.org/index.php/Special:Search"