[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: Changing signature algorithm

Yes. This is a packetcable requirement that singerInfos have a digestAlgo of sha1 and signatureAlgo of RSA. The function rsa_create_signature() only supports RSAwithSHA1. Modifying it for RSA results in recursive loop. It's not clear to me why this is.


----- Original Message ----
From: Love Hörnquist Åstrand <lha@kth.se>
To: heimdal-discuss@sics.se; hansentf@yahoo.com
Sent: Tuesday, June 5, 2007 11:49:04 PM
Subject: Re: Changing signature algorithm

> I'm trying some changes to pkinit and wanting to understand the  
> piece of code
> below. Specifically I want to change the signature algorithm from  
> RSA with SHA1
> to just RSA. Doing so fails since lib/hx509/crypto.c:  
> rsa_create_signature()
> does not support it. Why?

RSA on non-digests is not very common, already done the digest ?


Shape Yahoo! in your own image. Join our Network Research Panel today!