[openssl-dev] Fwd: Re: [openssl-users] Removing obsolete crypto from OpenSSL 1.1 - seeking feedback
Jeffrey Walton
noloader at gmail.com
Tue Nov 17 10:22:34 UTC 2015
On Mon, Nov 16, 2015 at 9:06 PM, Peter Waltenberg <pwalten at au1.ibm.com>
wrote:
> Why not offer another set of get_XYZ_byname() which resticts the caller to
> socially acceptable algorithms. Or allows the opposite, it really doesn't
> matter but restricted being the newer API breaks less code by default.
>
This is an interesting idea. For completeness, it has failed in other
contexts. For example, the IETF's TLS Working Group refuses to provide such
an abstraction. See, for example,
https://www.ietf.org/mail-archive/web/tls/current/msg17611.html.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://mta.openssl.org/pipermail/openssl-dev/attachments/20151117/31d8640f/attachment.html>
More information about the openssl-dev
mailing list