Skip to content

Use SHA256 test variant instead of SHA1#2504

Merged
botovq merged 1 commit into
rust-openssl:masterfrom
abbra:ecdsa-deterministic-signature-test-sha256
Oct 20, 2025
Merged

Use SHA256 test variant instead of SHA1#2504
botovq merged 1 commit into
rust-openssl:masterfrom
abbra:ecdsa-deterministic-signature-test-sha256

Conversation

@abbra

@abbra abbra commented Oct 20, 2025

Copy link
Copy Markdown
Contributor

Fedora and RHEL default to disable SHA1 signatures. Use a different test vector from the https://github.com/openssl/openssl/blob/openssl-3.2.0/test/recipes/30-test_evp_data/evppkey_ecdsa_rfc6979.txt instead of SHA1 signatures in the test:

DigestSign = SHA256
Key = P-256_PRIV
NonceType = deterministic
Input = "sample"
Output = 3046022100EFD48B2AACB6A8FD1140DD9CD45E81D69D2C877B56AAF991C34D0EA84EAF3716022100F7CB1C942D657C41D436C7A1B6E29F65F3E900DBB9AFF4064DC4AB2F843ACDA8

@abbra
Use SHA256 test variant instead of SHA1
ba9970e 
Fedora and RHEL default to disable SHA1 signatures. Use a different test vector
from the https://github.com/openssl/openssl/blob/openssl-3.2.0/test/recipes/30-test_evp_data/evppkey_ecdsa_rfc6979.txt
instead of SHA1 signatures in the test:

DigestSign = SHA256
Key = P-256_PRIV
NonceType = deterministic
Input = "sample"
Output = 3046022100EFD48B2AACB6A8FD1140DD9CD45E81D69D2C877B56AAF991C34D0EA84EAF3716022100F7CB1C942D657C41D436C7A1B6E29F65F3E900DBB9AFF4064DC4AB2F843ACDA8

Signed-off-by: Alexander Bokovoy <abokovoy@redhat.com>
@botovq botovq merged commit 592a0fb into rust-openssl:master Oct 20, 2025
81 checks passed
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@botovq botovq botovq approved these changes

Assignees

No one assigned

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

2 participants

@abbra @botovq