Subject: openssl and IDEA
To: None <current-users@netbsd.org>
From: Sverre Froyen <sverre@viewmark.com>
List: current-users
Date: 06/07/2002 08:23:01
Hi,

The version of openssl in the source tree has dummy routines for the IDEA 
cipher and possibly others.  This causes a problem when the result of an SSL 
negotiation is to use IDEA. For instance, using the package source p5-libwww 
and P5-SSLeay, the command

	lwp-request https://epayhipvar.paymentech.net

results in

	IDEA is a patented algorithm; link against libcrypto_idea.a. Aborting...

The openssl library appears to present IDEA as a valid cipher during the SSL 
negotiation and then turn around and exit with the above error message when 
IDEA is chosen.  Since IDEA is encumbered with a patent, the solution 
suggested in the error message is not viable.  Instead, IDEA should not be 
presented as a valid option in the first place.

Sverre