[PATCH libksba 2/2] Support multi-valued signatures in CSRs.

Damien Goutte-Gattat dgouttegattat at incenp.org
Fri Feb 15 00:03:03 CET 2019


On Thu, Feb 14, 2019 at 09:23:17AM +0900, NIIBE Yutaka wrote:
> Hello,
> Damien Goutte-Gattat wrote:
> > * src/certreq.c (ksba_certreq_set_sig_val): Support signatures
> > made of several values.
> Thanks, applied and pushed.


I just want to note that when I wrote this patch, I (mistakently)
thought that EdDSA signature values were constructed the same way as
ECDSA signature values (that is, as a SEQUENCE of INTEGER values).

I realized later that it is not the case. The RFC 8410 [1] states that
for EdDSA signatures, the value shall simply be the concatenation of the
two MPIs that are the result of the EdDSA operation.

Therefore this patch only adds support for ECDSA, and more work will be
needed to make the ksba_certreq_set_sig_val function usable with EdDSA.


- Damien

[1] https://tools.ietf.org/html/rfc8410#section-6
-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 228 bytes
Desc: not available
URL: <https://lists.gnupg.org/pipermail/gnupg-devel/attachments/20190214/8908afc7/attachment.sig>

More information about the Gnupg-devel mailing list