RFR: 8298127: HSS/LMS Signature Verification [v10]

Weijun Wang weijun at openjdk.org
Thu May 11 19:35:54 UTC 2023


On Thu, 11 May 2023 09:36:17 GMT, Ferenc Rakoczi <duke at openjdk.org> wrote:

>> Implement support for Leighton-Micali Signatures (LMS) as described in RFC 8554. LMS is an approved software signing algorithm for CNSA 2.0, with SHA-256/192 parameters recommended.
>
> Ferenc Rakoczi has updated the pull request incrementally with one additional commit since the last revision:
> 
>   Reintroduced Length for HSSPublicKey, added more @Override annotations

src/java.base/share/classes/sun/security/provider/HSS.java line 436:

> 434:             int sigArrLen = (12 + n * (p + 1) + m * h);
> 435:             if ((q >= (1 << h)) || (inLen < sigArrLen) || (checkExactLen && (inLen != sigArrLen))) {
> 436:                 throw new InvalidParameterException("LMS signature length is incorrect");

Should be a `SignatureException`.

-------------

PR Review Comment: https://git.openjdk.org/jdk/pull/13691#discussion_r1191608083



More information about the security-dev mailing list