SHAxxxWithECDSA

Seiji Ariga ariga at khaotic.net
Thu May 17 07:41:29 CEST 2012


libgcrypt does not support, say, SHA384WithECDSA (*1) ? (OID is
1.2.840.10045.4.3.3)

I noticed following error message when I ran "gpgsm --import ca-bundle(*2)".
----
gpgsm: unknown hash algorithm `1.2.840.10045.4.3.3'
gpgsm: self-signed certificate has a BAD signature: General error
gpgsm: basic certificate checks failed - not imported
----

// Seiji Ariga

(*1) e.g. "VeriSign Class 3 Public Primary Certification Authority -
G4" uses "ecdsaWithSHA384"
        http://www.verisign.com/support/roots.html
(*2) http://mxr.mozilla.org/mozilla/source/security/nss/lib/ckfw/builtins/certdata.txt?raw=1



More information about the Gcrypt-devel mailing list