Subject: openssl and IDEA
To: None <current-users@netbsd.org>
From: Sverre Froyen <sverre@viewmark.com>
List: current-users
Date: 06/07/2002 08:23:01
Hi,
The version of openssl in the source tree has dummy routines for the IDEA
cipher and possibly others. This causes a problem when the result of an SSL
negotiation is to use IDEA. For instance, using the package source p5-libwww
and P5-SSLeay, the command
lwp-request https://epayhipvar.paymentech.net
results in
IDEA is a patented algorithm; link against libcrypto_idea.a. Aborting...
The openssl library appears to present IDEA as a valid cipher during the SSL
negotiation and then turn around and exit with the above error message when
IDEA is chosen. Since IDEA is encumbered with a patent, the solution
suggested in the error message is not viable. Instead, IDEA should not be
presented as a valid option in the first place.
Sverre