Mailing List Archive: GnuPG: gcrypt

SHAxxxWithECDSA

Index | Next | Previous | View Threaded

ariga at khaotic

May 16, 2012, 10:41 PM

Post #1 of 2 (239 views)
Permalink

SHAxxxWithECDSA

libgcrypt does not support, say, SHA384WithECDSA (*1) ? (OID is
1.2.840.10045.4.3.3)

I noticed following error message when I ran "gpgsm --import ca-bundle(*2)".
----
gpgsm: unknown hash algorithm `1.2.840.10045.4.3.3'
gpgsm: self-signed certificate has a BAD signature: General error
gpgsm: basic certificate checks failed - not imported
----

// Seiji Ariga

(*1) e.g. "VeriSign Class 3 Public Primary Certification Authority -
G4" uses "ecdsaWithSHA384"
http://www.verisign.com/support/roots.html
(*2) http://mxr.mozilla.org/mozilla/source/security/nss/lib/ckfw/builtins/certdata.txt?raw=1

_______________________________________________
Gcrypt-devel mailing list
Gcrypt-devel [at] gnupg
http://lists.gnupg.org/mailman/listinfo/gcrypt-devel

wk at gnupg

May 17, 2012, 1:26 AM

Post #2 of 2 (224 views)
Permalink

Re: SHAxxxWithECDSA [In reply to]

On Thu, 17 May 2012 07:41, ariga [at] khaotic said:
> libgcrypt does not support, say, SHA384WithECDSA (*1) ? (OID is
> 1.2.840.10045.4.3.3)

Please try adding this OID to libgcrypt/cipher/sha512.c,
oid_spec_sha384.

Salam-Shalom,

Werner

--
Die Gedanken sind frei. Ausnahmen regelt ein Bundesgesetz.

_______________________________________________
Gcrypt-devel mailing list
Gcrypt-devel [at] gnupg
http://lists.gnupg.org/mailman/listinfo/gcrypt-devel

Index | Next | Previous | View Threaded

Interested in having your list archived? Contact Gossamer Threads