Just dropping in to say I joined the list. I've pointed
libtom.org at
their website (yes, it's really up, and yes they're hosting it :-)).
I can add sub-domains for mirrors/etc as you guys request them.
As for my involvement in the projects as I've sent to them I'm not
actively involved at all. My work kinda prevents me from working on
LTC, but I can contribute to LTM/TFM freely. Mostly I'm just lurking
for the moment.
I submitted a list of projects for them on the LTC front [ideas of
things to work on]. Notably
1. BER decoding support for various STRING ASN.1 types (bit/octet/
printable/ia5)
2. Flexi Encoder for ASN.1
3. OID table for all sorts of X.509 fields (key types, extensions,
etc...)
4. There is a bug in the ecc_sign_hash/verify_hash for when the
hashlen > curvelen. It's not insecure it's just not standards
compliant. Instead of of reducing the hash modulo the order you
should right shift it until the bit lengths are equal (this fix will
make it CAVP compliant).
5. I have no idea what state the binary ECC is in [I did a clean port
from scratch for my work] but it might be nice to have to have
symmetry.
From this you can start on
1. X.509 parser for Flexi list
2. X.509 creator [flexilist -> ASN.1 DER]
3. PKCS #8 library (encode/decode, encrypt/decrypt, I'd build those
in layers, e.g. pkcs8_encrypt_key calls pkcs8_export then does the
crypto on it).
From this
1-oo. All sorts of X.509 routines [cert sign, hash, retrieve/set
values, import/export key, etc].
From that ...
1. TLS support
2. PKCS #7 support
...
Those sorts of projects are what I do for a living now, so my reason
for not contributing to LTC is mostly about IP but also because I'd
rather study piano in my spare time then re-write what I was working
on at the office :-)
Tom