[Bug 3005] Use high-level EVP PKEY API instead of low-level algorithm specific calls + separate digesting in the every backend

bugzilla-daemon at bugzilla.mindrot.org bugzilla-daemon at bugzilla.mindrot.org
Wed May 8 15:59:54 AEST 2019


https://bugzilla.mindrot.org/show_bug.cgi?id=3005

--- Comment #2 from Damien Miller <djm at mindrot.org> ---
Moreover the diffstat:

 14 files changed, 707 insertions(+), 489 deletions(-)

Doesn't show any benefit for code removal, and the patch introduces new
dependencies on OpenSSL's ASN.1 code, e.g. the i2d_DSA_SIG() etc.

This patch is only of benefit for signature algorithms that are
supported by OpenSSL. The last two that we added (ed25519 and XMSS)
weren't, and I don't think it's likely that future signature algorithm
additions will land in OpenSSL before they land in OpenSSH either.

-- 
You are receiving this mail because:
You are watching the assignee of the bug.
You are watching someone on the CC list of the bug.


More information about the openssh-bugs mailing list