]> git.ipfire.org Git - thirdparty/openssl.git/commit
projects / thirdparty / openssl.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: 27b8836) | patch
Fix use of SHAKE as a digest in CMS
authorDaniel Van Geest <daniel.vangeest@cryptonext-security.com>
Tue, 18 Mar 2025 12:56:53 +0000 (12:56 +0000)
committerTomas Mraz <tomas@openssl.org>
Thu, 20 Mar 2025 11:20:37 +0000 (12:20 +0100)
commitc1d27789e99543d366a8e0498cbab2d9543ef2cb
tree3cf46e2e3a14d5bda5ba180698fff18ca9b54a08tree
parent27b88364e41f01cc1be6ff2941dd07919f286c89commit | diff
Fix use of SHAKE as a digest in CMS

draft-ietf-lamps-cms-sphincs-plus-19 specifies SHAKE as
the message digest algorithm for SLH-DSA-SHAKE-* in CMS.
SHAKE doesn't have a default digest length, so this adds
a SHAKE-specific kludge in CMS.

Reviewed-by: Paul Dale <ppzgs1@gmail.com>
Reviewed-by: Tim Hudson <tjh@openssl.org>
Reviewed-by: Matt Caswell <matt@openssl.org>
Reviewed-by: Tomas Mraz <tomas@openssl.org>
(Merged from https://github.com/openssl/openssl/pull/27087)
crypto/cms/cms_lib.c diff | blob | blame | history
test/recipes/80-test_cms.t diff | blob | blame | history
test/smime-certs/mksmime-certs.sh [changed mode: 0644->0755] diff | blob | blame | history
test/smime-certs/sm_mldsa44.pem [new file with mode: 0644] blob
test/smime-certs/sm_slhdsa_sha2_128s.pem [new file with mode: 0644] blob
test/smime-certs/sm_slhdsa_shake_128s.pem [new file with mode: 0644] blob
test/smime-certs/sm_slhdsa_shake_256s.pem [new file with mode: 0644] blob
Mirror of https://github.com/openssl/openssl.git