19 Mar
2014
19 Mar
'14
2:18 p.m.
Joachim Strömbergson joachim@secworks.se writes:
Looking at sha2.h it seems that Nettle does not support the truncated SHA-512 versions SHA-512/224 and SHA-512/256 as defined in FIPS 180-4, correct?
That's correct. I wasn't aware of them... Are there any applications or protocols using them?
If not is that something that would be interesting to add? It is not a very big addition - basically add more variants of the H0-constants and then truncate.
If they are needed, I'd suggest adding
sha512_224_init sha512_224_digest sha512_256_init sha512_256_digest
(and not bother with any additional aliases for context struct and _update function). Is that ok?
Regards, /Niels
--
Niels Möller. PGP-encrypted email is preferred. Keyid C0B98E26.
Internet email is subject to wholesale government surveillance.