[Top][All Lists]
[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
Re: [GNU Crypto] EMSA_PSS.MGF Bug? Version 2.0.1
|
From: |
Casey Marshall |
|
Subject: |
Re: [GNU Crypto] EMSA_PSS.MGF Bug? Version 2.0.1 |
|
Date: |
Sun, 07 Nov 2004 10:34:00 -0800 |
|
User-agent: |
Gnus/5.1002 (Gnus v5.10.2) Emacs/21.3 (gnu/linux) |
>>>>> "TAKIGUCHI" == TAKIGUCHI Naruhito <address@hidden> writes:
TAKIGUCHI> Dear Gnu Crypto developers.
TAKIGUCHI> I'm implementing the RSASSA-PSS signature in Java, and
TAKIGUCHI> testing with Gnu Crypto. But the signature by my
TAKIGUCHI> implementation does not verify by GNU Crypto.
TAKIGUCHI> I have read PKCS#1 v2.1 again, and review GNU Crypto'
TAKIGUCHI> EMSA_PSS.java. I doubt this is a bug in GNU Crypto's
TAKIGUCHI> EM_PSS.java.
TAKIGUCHI> PKCS#1 v2.1 B.2.1 MGF1
TAKIGUCHI> "3. For counter from 0 to [maskLen / hLen] - 1, do the following"
TAKIGUCHI> In contract, EMSA_PSS.MGF method (line: 379),
TAKIGUCHI> "for( int i = 0; i < limit; i++ )" .
TAKIGUCHI> ^^^^^^^^^
TAKIGUCHI> In correctly, "for ( int i = 0; i <= limit; i++ )" ?
TAKIGUCHI> ^^^^^^^^^^
TAKIGUCHI> Thanks in advance.
I think you are correct, and that indeed using a '<=' is correct
here.
Have you tried GNU Crypto's version with that change? Does it work
then?
Also, if you have a test case for this (say, an example signature) I
would like to add it to the test suite.
Cheers,
--
Casey Marshall || address@hidden