sha256 with ECDSA certificate signatures

2025-08-01 03:34:39 +02:00 · 2011-04-08 11:08:45 -07:00
parent 214d2cfad7
commit 0c6015fb86
2 changed files with 5 additions and 3 deletions
--- a/ctaocrypt/include/asn.h
+++ b/ctaocrypt/include/asn.h
@@ -126,7 +126,8 @@ enum Sig_Sum  {
    MD5wRSA    = 648,
    SHAwRSA    = 649,
    SHAwECDSA  = 520,
-    SHA256wRSA = 655
+    SHA256wRSA   = 655,
+    SHA256wECDSA = 524
 };

 enum Hash_Sum  {
--- a/ctaocrypt/src/asn.c
+++ b/ctaocrypt/src/asn.c
@@ -1583,7 +1583,7 @@ static int ConfirmSignature(DecodedCert* cert, const byte* key, word32 keySz,
 #ifndef NO_SHA256
    byte digest[SHA256_DIGEST_SIZE]; /* max size */
 #else
-    byte digest[SHA_DIGEST_SIZE];   /* max size */
+    byte digest[SHA_DIGEST_SIZE];    /* max size */
 #endif
    int  hashType, digestSz, ret;

@@ -1607,7 +1607,8 @@ static int ConfirmSignature(DecodedCert* cert, const byte* key, word32 keySz,
        digestSz = SHA_DIGEST_SIZE;
    }
 #ifndef NO_SHA256
-    else if (cert->signatureOID == SHA256wRSA) {
+    else if (cert->signatureOID == SHA256wRSA ||
+             cert->signatureOID == SHA256wECDSA) {
        Sha256 sha256;
        InitSha256(&sha256);
        Sha256Update(&sha256, cert->source + cert->certBegin,