- For FIPS certification.

Fips is writen for 0.9.8 version at begining. So migrate it to 1.0.0 take very lot of work (to many code changing) and time.

Ludovic.

Le 21/12/2011 12:12, ayanamist a écrit :
I can understand it, but why does stunnel downgrade it from 1.00 to 0.98 on windows version?

On Wed, Dec 21, 2011 at 5:52 PM, Ludovic LEVET <llevet@ludosoft.org> wrote:
Hi,

- For FIPS certification.
- Yes, crypted headers of certificates are differentes from openssl 0.9.8 and 1.0.0 like this :


openssl 1.0.0 key :

-----BEGIN ENCRYPTED PRIVATE KEY-----
MIIJnzBJBgkqhkiG9w0BBQ0wPDAbBgkqhkiG9w0BBQwwDgQI0Z45oYYRJ1cCAggA
MB0GCWCGSAFlAwQBAgQQF4QLI0IILDItqQFXHJeAxgSCCVBAo1Ed9BHwyhHeBzx2
rQELkAghar26CFsP7qvMwZ+vnATbArA2MvFWJWy0l2pl7/Rn7RcoztbSzg82c8IG
...

openssl 0.9.8 key :

-----BEGIN RSA PRIVATE KEY-----
Proc-Type: 4,ENCRYPTED
DEK-Info: DES-EDE3-CBC,327E4B06D51C7728

grestO9v2wfiqFwBy8bBbpNjMWpFrrc/9y8q68n6c48enCFyDsdVlyqToOQ+Razt
d98I+rkTow33X83e9+Zt8rGlKJlPXn3zHTKbjNhfc7j6kk+ssWJft5OAvu5NShMx
FOATl4pW97qCf1x4pFwQGm8/8MhCqOpqv2cLfjz2T4Egu1qP2sHZ35QU/gHBLHYh
...


Ludovic.