cURL / Mailing Lists / curl-library / Single Mail

curl-library

Re: Additional relevant changes for PolarSSL 1.1.0

From: Daniel Stenberg <daniel_at_haxx.se>
Date: Thu, 19 Jan 2012 22:26:27 +0100 (CET)

On Thu, 19 Jan 2012, Paul Bakker wrote:

Thanks for pointing these things out!

> I would like to point to
> http://polarssl.org/trac/wiki/SecurityAdvisory201102
>
> My advice is to move from HAVEGE to the CTR_DRBG where possible.

Ugha. So why rename the function at all? Why not simply remove it to prevent
people (like us) who don't pay attention to keep using an unsafe function?

Any chance I can lure you into writing a patch that makes it use CTR_DRBG
instead?

> In addition, I see that error codes are reported in a debug function.
>
> PolarSSL now includes error.c which has error_strerror() for translating
> error codes to human-readable format.

I'll save those ones for the people who actually are using libcurl with
polarssl to fix...

-- 
  / daniel.haxx.se
-------------------------------------------------------------------
List admin: http://cool.haxx.se/list/listinfo/curl-library
Etiquette:  http://curl.haxx.se/mail/etiquette.html

Received on 2012-01-19

This message: [ Message body ]
Next message: Daniel Stenberg: "Re: SSL handshake fails between libcurl and libgnutls/MHD"
Previous message: maarten_at_goeiespullen.nl: "Re: setup Issue with libssh2 libcurl and gcc"
In reply to: Paul Bakker: "Additional relevant changes for PolarSSL 1.1.0"
Next in thread: Paul Bakker: "Re: Additional relevant changes for PolarSSL 1.1.0"

Contemporary messages sorted: [ by date ] [ by thread ] [ by subject ] [ by author ] [ by messages with attachments ]