You are viewing a plain text version of this content. The canonical link for it is here.
Posted to dev@mina.apache.org by "Goldstein Lyor (JIRA)" <ji...@apache.org> on 2015/06/15 14:01:00 UTC
[jira] [Resolved] (SSHD-492) Use DERParser/DERWriter to correctly
sign/verify hashes
[ https://issues.apache.org/jira/browse/SSHD-492?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ]
Goldstein Lyor resolved SSHD-492.
---------------------------------
Resolution: Fixed
Also fixed:
* Separated _Signature#initSigner_ and _Signature#initVerifier_ in order to make sure that only *one* is called at a time. The original _init_ method was accepting *both* public and private key and thus the code is confusing since an initialized signature can be used only for *one* purpose - signing or verifying
* Fixed _AbstractSignature#extractSignature_ (and renamed it) to make it more robust in detecting whether a signature is encoded or not
* Added coverage tests to check that RSA (up to 4096 bits) and DSS (up to 1024 bits) signatures are handled correctly as well
> Use DERParser/DERWriter to correctly sign/verify hashes
> -------------------------------------------------------
>
> Key: SSHD-492
> URL: https://issues.apache.org/jira/browse/SSHD-492
> Project: MINA SSHD
> Issue Type: Improvement
> Affects Versions: 1.0.0
> Reporter: Goldstein Lyor
> Assignee: Goldstein Lyor
> Fix For: 1.0.0
>
>
> The current code does not handle correctly DER lengths > 127 (even if for now it is unlikely to be encountered).
--
This message was sent by Atlassian JIRA
(v6.3.4#6332)