diff options
| author | lloyd <[email protected]> | 2008-11-28 15:35:35 +0000 |
|---|---|---|
| committer | lloyd <[email protected]> | 2008-11-28 15:35:35 +0000 |
| commit | 360506bec77e135919ec9d45fd1f441f3ca87303 (patch) | |
| tree | 24bba04a9d08a967143e2a4e95369e4e0089e237 /doc | |
| parent | 45cd53a6adeadf417a77353d0443bbe67d337087 (diff) | |
Rickard Bondesson reported on the mailing list that he had noticed
a discrepency between OpenSSL and Botan when generating SHA-512/EMSA3
signatures. In fact it turns out that the EMSA3 identifier for SHA-512
contained a typo and was incorrect.
Unfortunately this means that SHA-512/EMSA3 signatures generated by
Botan up until now will not be accepted by other implementations, and
the signatures by other implementations would not be accepted by Botan.
Currently I am not making any provision for backwards compatability with
the old incorrect hash identifier, since I am assuming/guessing that
SHA-512/EMSA3 is not a very common combination.
Diffstat (limited to 'doc')
| -rw-r--r-- | doc/log.txt | 1 | ||||
| -rw-r--r-- | doc/thanks.txt | 5 |
2 files changed, 5 insertions, 1 deletions
diff --git a/doc/log.txt b/doc/log.txt index 4c2fbc373..87427e7c1 100644 --- a/doc/log.txt +++ b/doc/log.txt @@ -3,6 +3,7 @@ - Wrap private structs in SSE2 SHA-1 code in anonymous namespace - Change configure.pl's CPU autodetection output to be more consistent - Disable using OpenSSL's AES due to crashes + - Fix a compatibility problem with SHA-512/EMSA3 signature padding - Fix bug preventing EGD entropy poller from working - Fix warning in /proc walking entropy poller - Fix compilation with IBM XLC for Cell 0.9 diff --git a/doc/thanks.txt b/doc/thanks.txt index b6a3ef30b..caa2fb538 100644 --- a/doc/thanks.txt +++ b/doc/thanks.txt @@ -3,6 +3,7 @@ The following people (sorted alphabetically) contributed bug reports, useful information, or were generally just helpful people to talk to: Jeff B +Rickard Bondesson Mike Desjardins Matthew Gregan Hany Greiss @@ -16,10 +17,12 @@ Kaushik Veeraraghavan Dominik Vogt James Widener +Cerulean Studios, creators of the Trillian instant messaging client, +has provided financial assistance to the project. + Barry Kavanagh of AEP Systems Ltd kindly provided an AEP2000 crypto card and drivers, enabling the creation of Botan's AEP engine module. - In addition, the following people have unknowingly contributed help: Dean Gaudet <[email protected]> wrote the SSE2 implementation of SHA-1 |