1 README for Bundle Security Protocol usage

     2 

     3 The standard ciphersuites require, amongst other things, 

     4 an implementation of sha-256 message digest algorithm.

     5 

     6 The DTN reference code uses OpenSSL for cryptographic

     7 and related functions. Unfortunately, some versions of

     8 OpenSSL do not include sha-256.

     9 

    10 The "configure" process checks for the availability of

    11 sha-256 and provides an error if it is not found.

    12 

    13 If your system's OpenSSL does not have sha-256 then you 

    14 can either upgrade it or build and use a local  version 

    15 of OpenSSL. OpenSSL can be obtained from

    16 http://www.openssl.org

    17 

    18 OpenSSL 0.9.8 version include sha-256 by default. If your

    19 system uses version 0.9.7 and you do not wish to upgrade

    20 then you can enable sha-256 in later versions of 0.9.7,

    21 such as 0.9.7l and 0.9.7m. To enable sha-256, specify "fips"

    22 when running "Configure".

    23 

    24 If you wish to leave you system installation untouched and

    25 build against a local version, then configure dtn using

    26 ./configure --with-bsp --with-openssl=/path/to/openssl

    27 

    28 Mac OS X note: for Mac OS X users ONLY. If you build dtn

    29 against a local OpenSSL using "--with-openssl=/path/to/openssl"

    30 you MUST also specify with it LDFLAGS="-Wl,-search_paths_first". 

    31 The configuration for OS X users would then be 

    32 ./configure --with-bsp --with-openssl=/path/to/openssl LDFLAGS="-Wl,-search_paths_first"

    33 Note that the quotes are required for the LDFLAGS argument.