[Opendnssec-develop] Botan version
Roland van Rijswijk
Roland.vanRijswijk at surfnet.nl
Fri Jul 1 12:07:23 UTC 2011
Hi Rickard,
On 1 jul 2011, at 14:04, Rickard Bellgrim wrote:
> Before I committed the code today, SoftHSM did not reuse the PK_Signer
> object. It worked ok in Botan 1.8.X, but it would get some performance
> issues in Botan 1.9 and Botan 1.10.
>
> I realized however that there is a bug in Botan prior to the latest
> releases that caused a problem when you reuse the object and where
> running EMSA3(RAW) (== CKM_RSA_PKCS).
>
> Should I increase the required Botan version or try to detect which
> version are used and then apply the optimization?
I would say try to detect the version; pre-built packages for distributions tend to lag behind the release cycle of products so it would be prudent to make this optional for the time being.
Cheers,
Roland
-- Roland M. van Rijswijk
-- SURFnet Middleware Services
-- t: +31-30-2305388
-- e: roland.vanrijswijk at surfnet.nl
More information about the Opendnssec-develop
mailing list