FS#61213 - [openssl] SHA3-512 invalid digest type
Attached to Project:
Arch Linux
Opened by ipp (n8V8r) - Sunday, 30 December 2018, 15:20 GMT
Last edited by Toolybird (Toolybird) - Wednesday, 31 May 2023, 07:03 GMT
Opened by ipp (n8V8r) - Sunday, 30 December 2018, 15:20 GMT
Last edited by Toolybird (Toolybird) - Wednesday, 31 May 2023, 07:03 GMT
|
Details
Description: Since 1.1.1.a-1 provides support for SHA3-x it
would be expected such to work when generating certificates
which however does not.
Additional info: * package version(s) 1.1.1.a-1 * config and/or log files etc. in openssl_ca.conf set default_md = sha3-512 ___ OpenSSL> list -digest-commands blake2b512 blake2s256 gost md4 md5 mdc2 rmd160 sha1 sha224 sha256 sha3-224 sha3-256 sha3-384 sha3-512 sha384 sha512 sha512-224 sha512-256 shake128 shake256 sm3 ___ OpenSSL> list -digest-algorithms RSA-MD4 => MD4 RSA-MD5 => MD5 RSA-MDC2 => MDC2 RSA-RIPEMD160 => RIPEMD160 RSA-SHA1 => SHA1 RSA-SHA1-2 => RSA-SHA1 RSA-SHA224 => SHA224 RSA-SHA256 => SHA256 RSA-SHA3-224 => SHA3-224 RSA-SHA3-256 => SHA3-256 RSA-SHA3-384 => SHA3-384 RSA-SHA3-512 => SHA3-512 RSA-SHA384 => SHA384 RSA-SHA512 => SHA512 RSA-SHA512/224 => SHA512-224 RSA-SHA512/256 => SHA512-256 RSA-SM3 => SM3 BLAKE2b512 BLAKE2s256 id-rsassa-pkcs1-v1_5-with-sha3-224 => SHA3-224 id-rsassa-pkcs1-v1_5-with-sha3-256 => SHA3-256 id-rsassa-pkcs1-v1_5-with-sha3-384 => SHA3-384 id-rsassa-pkcs1-v1_5-with-sha3-512 => SHA3-512 MD4 md4WithRSAEncryption => MD4 MD5 MD5-SHA1 md5WithRSAEncryption => MD5 MDC2 mdc2WithRSA => MDC2 ripemd => RIPEMD160 RIPEMD160 ripemd160WithRSA => RIPEMD160 rmd160 => RIPEMD160 SHA1 sha1WithRSAEncryption => SHA1 SHA224 sha224WithRSAEncryption => SHA224 SHA256 sha256WithRSAEncryption => SHA256 SHA3-224 SHA3-256 SHA3-384 SHA3-512 SHA384 sha384WithRSAEncryption => SHA384 SHA512 SHA512-224 sha512-224WithRSAEncryption => SHA512-224 SHA512-256 sha512-256WithRSAEncryption => SHA512-256 sha512WithRSAEncryption => SHA512 SHAKE128 SHAKE256 SM3 sm3WithRSAEncryption => SM3 ssl3-md5 => MD5 ssl3-sha1 => SHA1 whirlpool ___ Steps to reproduce: in openssl_ca.conf set default_md = sha3-512 generating a certificate ends with error:100C508A:elliptic curve routines:pkey_ec_ctrl:invalid digest type:crypto/ec/ec_pmeth.c:327: |
This task depends upon
Closed by Toolybird (Toolybird)
Wednesday, 31 May 2023, 07:03 GMT
Reason for closing: None
Additional comments about closing: Old and stale. Assuming no longer an issue now that we're on openssl-3.x. If there's still a problem, please report upstream.
Wednesday, 31 May 2023, 07:03 GMT
Reason for closing: None
Additional comments about closing: Old and stale. Assuming no longer an issue now that we're on openssl-3.x. If there's still a problem, please report upstream.
Comment by ipp (n8V8r) - Sunday, 30
December 2018, 17:24 GMT
The same error happens with 'default_md = blake2b512'