Difference between revisions of "OpenSSL and EC Libraries"
(Clarify bitcoin's non-use of restricted algos, don't be dismissive of heartbleed) |
(→Fixes / Workarounds: convenience link to stackoverflow.com for "how-to") |
||
| (One intermediate revision by the same user not shown) | |||
| Line 5: | Line 5: | ||
== Fixes / Workarounds == | == Fixes / Workarounds == | ||
| − | |||
| − | + | One workaround is to compile your own OpenSSL and use this rather than the distribution package manager's library. Some hints how to do this can be found in the answers of [https://stackoverflow.com/questions/22952287/how-to-upgrade-openssl-in-centos-6-5-linux-unix-from-source How to upgrade OpenSSL (stackoverflow.com)]. | |
| − | |||
Latest revision as of 15:34, 1 August 2015
OpenSSL Without Elliptic Curve Support
Some algorithms in OpenSSL library may be restricted by patent law. Due to strong coupling between the elliptic curve support Bitcoin requires and these nominally non-free algorithms, some Linux distributions (most notably Fedora) ship OpenSSL libraries with elliptic curve support disabled. Since Bitcoin depends on elliptic curve cryptography (although not on any restricted algorithms), it cannot be used with such libraries.
Fixes / Workarounds
One workaround is to compile your own OpenSSL and use this rather than the distribution package manager's library. Some hints how to do this can be found in the answers of How to upgrade OpenSSL (stackoverflow.com).
