git.ipfire.org Git - thirdparty/openssl.git/commit

]> git.ipfire.org Git - thirdparty/openssl.git/commit

projects / thirdparty / openssl.git / commit

author	Daniel Van Geest <daniel.vangeest@cryptonext-security.com>
	Tue, 18 Mar 2025 12:56:53 +0000 (12:56 +0000)
committer	Tomas Mraz <tomas@openssl.org>
	Thu, 20 Mar 2025 11:20:58 +0000 (12:20 +0100)
commit	c3d43037b460c7a836073713b78e2c536a08714d
tree	7ae96f4ebae0e32a1f95f6b78dcab650f1ddd5fe	tree \| snapshot
parent	ac20f5c90c8d46a9ea72802e6c44ae6f6957b616	commit \| diff

Fix use of SHAKE as a digest in CMS

draft-ietf-lamps-cms-sphincs-plus-19 specifies SHAKE as
the message digest algorithm for SLH-DSA-SHAKE-* in CMS.
SHAKE doesn't have a default digest length, so this adds
a SHAKE-specific kludge in CMS.

Reviewed-by: Paul Dale <ppzgs1@gmail.com>
Reviewed-by: Tim Hudson <tjh@openssl.org>
Reviewed-by: Matt Caswell <matt@openssl.org>
Reviewed-by: Tomas Mraz <tomas@openssl.org>
(Merged from https://github.com/openssl/openssl/pull/27087)

(cherry picked from commit c1d27789e99543d366a8e0498cbab2d9543ef2cb)

crypto/cms/cms_lib.c		diff \| blob \| blame \| history
test/recipes/80-test_cms.t		diff \| blob \| blame \| history
test/smime-certs/mksmime-certs.sh	[changed mode: 0644->0755]	diff \| blob \| blame \| history
test/smime-certs/sm_mldsa44.pem	[new file with mode: 0644]	blob
test/smime-certs/sm_slhdsa_sha2_128s.pem	[new file with mode: 0644]	blob
test/smime-certs/sm_slhdsa_shake_128s.pem	[new file with mode: 0644]	blob
test/smime-certs/sm_slhdsa_shake_256s.pem	[new file with mode: 0644]	blob

Mirror of https://github.com/openssl/openssl.git

RSS Atom