GithubHelp home page GithubHelp logo

Comments (5)

guanzhi avatar guanzhi commented on May 10, 2024

目前基于OpenSSL 1.0.2d,这个版本的已知漏洞暂时对国密算法没有影响,是否有其他影响请参考OpenSSL的ChangeLog。OpenSSL的后续版本中1.1是一定会合并的,具体工作会在1.1正式发布后开始,预计可能会在1.1发布半年之后完成合并。是否合并OpenSSL 1.0.2后续版本主要看需求而定。

from gmssl.

moonfruit avatar moonfruit commented on May 10, 2024

提一个小建议哈,OpenSSL 本身是支持第三方的扩展的,GmSSL 应该可以单独编译成一个动态库。通过类似于 OpenSSL_add_all_algorithms() 这样的函数,将自己的算法注册到 OpenSSL 中去。这样 GmSSL 就与 OpenSSL 独立开了,不管 OpenSSL 的版本怎么变化,只要它的扩展机制不变,就可以轻松嵌入进去。这样会不会会更好一点儿?

from gmssl.

guanzhi avatar guanzhi commented on May 10, 2024

这是一个很好的建议。但是GmSSL暂时不会做这个尝试,有两个原因:

  1. OpenSSL在SSL层面似乎不支持扩展,因此无法支持国密SSL协议。
  2. 没有人手来做这方面的开发。

from gmssl.

J-Feng avatar J-Feng commented on May 10, 2024
  1. 请问GmSSL和OpenSSL在版本上有没有对应关系?
  2. 目前GmSSL合并OpenSSL的策略是什么样的?定期合并?大版本合并?还是出现严重漏洞才会合并?
  3. 如果我的项目既需要GmSSL,又需要保持对OpenSSL较新版本的跟踪,我自己对OpenSSL部分做了更新后,GmSSL主线是否接受这样的PR?
  4. GmSSL有没有计划将国密相关代码提交到OpenSSL主线?
  5. OpenSSL 1.1.1加入了对SM3和SM4的支持(ChangeLog

*) Add SM3 implemented according to GB/T 32905-2016
[ Jack Lloyd [email protected],
Ronald Tse [email protected],
Erick Borsboom [email protected] ]
*) Add SM4 implemented according to GB/T 32907-2016.
[ Jack Lloyd [email protected],
Ronald Tse [email protected],
Erick Borsboom [email protected] ]

请问这对GmSSL有什么影响?是否会继续开发?是否会针对这些做调整(比如合入OpenSSL1.1.1后移除GmSSL的相关算法,转而使用官方上游分支的实现)?

  1. 从OpenSSL的邮件列表看到建议将算法实现为外部ENGINE,请问GmSSL会有这样的实现吗?看上去这样会比较容易维护GmSSL和OpenSSL的关系

因为涉及到长期项目的选型,所以问题比较多,相信有些问题也是共性问题,谢谢!

from gmssl.

github-actions avatar github-actions commented on May 10, 2024

Marked as stale issue. Will be closed later if no activity for a while.

from gmssl.

Related Issues (20)

Recommend Projects

  • React photo React

    A declarative, efficient, and flexible JavaScript library for building user interfaces.

  • Vue.js photo Vue.js

    🖖 Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.

  • Typescript photo Typescript

    TypeScript is a superset of JavaScript that compiles to clean JavaScript output.

  • TensorFlow photo TensorFlow

    An Open Source Machine Learning Framework for Everyone

  • Django photo Django

    The Web framework for perfectionists with deadlines.

  • D3 photo D3

    Bring data to life with SVG, Canvas and HTML. 📊📈🎉

Recommend Topics

  • javascript

    JavaScript (JS) is a lightweight interpreted programming language with first-class functions.

  • web

    Some thing interesting about web. New door for the world.

  • server

    A server is a program made to process requests and deliver data to clients.

  • Machine learning

    Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.

  • Game

    Some thing interesting about game, make everyone happy.

Recommend Org

  • Facebook photo Facebook

    We are working to build community through open source technology. NB: members must have two-factor auth.

  • Microsoft photo Microsoft

    Open source projects and samples from Microsoft.

  • Google photo Google

    Google ❤️ Open Source for everyone.

  • D3 photo D3

    Data-Driven Documents codes.