Current status of --enable-crypto

Gary E. Miller gem at rellim.com
Thu Jan 26 19:42:00 UTC 2017


Yo Hal!

On Wed, 25 Jan 2017 23:47:01 -0800
Hal Murray <hmurray at megapathdsl.net> wrote:

> [From gitlab]
> > It uses SHA1 but not SHA0 - SHA1 is an option for packet MACs.
> > There should be no problem with using the ISC version
> > unconditionally.   
> 
> I though I saw something about getting rid of --enable-crypto

Yes, it is gone.

> We currently require libsodium.  Do we require libssl?

Yes, and yes.

> If so, we can
> drop the ISC crypto code.

Dunno.  Been asked before, not answered.

> Does libsodium include SHA1 and friends?

No.

> Do we still need libssl?

I think it is for SHA1.

RGDS
GARY
---------------------------------------------------------------------------
Gary E. Miller Rellim 109 NW Wilmington Ave., Suite E, Bend, OR 97703
	gem at rellim.com  Tel:+1 541 382 8588

	    Veritas liberabit vos. -- Quid est veritas?
    "If you can’t measure it, you can’t improve it." - Lord Kelvin
-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: application/pgp-signature
Size: 455 bytes
Desc: OpenPGP digital signature
URL: <https://lists.ntpsec.org/pipermail/devel/attachments/20170126/1f212a95/attachment.bin>


More information about the devel mailing list