On Fri, Jan 09, 2015 at 10:18:54AM -0700, Orion Poplawski wrote: > On 01/09/2015 09:57 AM, Nathaniel McCallum wrote: > > On Fedora 21, OpenSSL doesn't appear to support NIST p224r1, but *does* > > support other NIST curves. I presume this was intentional, but I'm not > > sure why. Can someone enlighten me? > > > > $ openssl ecparam -list_curves > > secp384r1 : NIST/SECG curve over a 384 bit prime field > > secp521r1 : NIST/SECG curve over a 521 bit prime field > > prime256v1: X9.62/SECG curve over a 256 bit prime field > > > > Nathaniel > > > > Individual curves must be considered by Fedora Legal on a case by case basis > > see e.g.: > > https://bugzilla.redhat.com/show_bug.cgi?id=1067697 > https://bugzilla.redhat.com/show_bug.cgi?id=1021898 Kinda affects Tor, too: https://bugzilla.redhat.com/show_bug.cgi?id=1164210 -- Tomasz Torcz ,,If you try to upissue this patchset I shall be seeking xmpp: zdzichubg@xxxxxxxxx an IP-routable hand grenade.'' -- Andrew Morton (LKML) -- devel mailing list devel@xxxxxxxxxxxxxxxxxxxxxxx https://admin.fedoraproject.org/mailman/listinfo/devel Fedora Code of Conduct: http://fedoraproject.org/code-of-conduct
