| lists.openwall.net | lists / announce owl-users owl-dev john-users john-dev passwdqc-users yescrypt popa3d-users / oss-security kernel-hardening musl sabotage tlsify passwords / crypt-dev xvendor / Bugtraq Full-Disclosure linux-kernel linux-netdev linux-ext4 linux-hardening linux-cve-announce PHC | |
|
Open Source and information security mailing list archives
| ||
|
Message-ID: <20260106082224.GF2630@sol> Date: Tue, 6 Jan 2026 00:22:24 -0800 From: Eric Biggers <ebiggers@...nel.org> To: David Howells <dhowells@...hat.com> Cc: Lukas Wunner <lukas@...ner.de>, Ignat Korchagin <ignat@...udflare.com>, Jarkko Sakkinen <jarkko@...nel.org>, Herbert Xu <herbert@...dor.apana.org.au>, Luis Chamberlain <mcgrof@...nel.org>, Petr Pavlu <petr.pavlu@...e.com>, Daniel Gomez <da.gomez@...nel.org>, Sami Tolvanen <samitolvanen@...gle.com>, "Jason A . Donenfeld" <Jason@...c4.com>, Ard Biesheuvel <ardb@...nel.org>, Stephan Mueller <smueller@...onox.de>, linux-crypto@...r.kernel.org, keyrings@...r.kernel.org, linux-modules@...r.kernel.org, linux-kernel@...r.kernel.org Subject: Re: [PATCH v11 3/8] pkcs7, x509: Add ML-DSA support On Tue, Jan 06, 2026 at 12:02:51AM -0800, Eric Biggers wrote: > For simplicity and to avoid this issue entirely, I suggest just allowing > SHA-512 only. That's the only one that RFC 9882 says MUST be supported > with ML-DSA. That being said, this is only applicable for the case where signed attributes are used. If you can get the other case working properly and just support that case, where the real user message is what is passed to ML-DSA, that would also avoid this issue and be much simpler. - Eric
Powered by blists - more mailing lists