[Pkg-openssl-devel] Bug#1020695: failure to compute digest: md4 and rmd160
Richard B. Kreckel
kreckel at in.terlu.de
Sun Sep 25 21:59:27 BST 2022
On 9/25/22 21:14, Sebastian Andrzej Siewior wrote:
> See the man page for OSSL_PROVIDER-legacy.
Having to add a the extra option -provider legacy breaks otherwise
flawless existing software.
There are no good reasons to break openssl dgst -rmd160, since RIPEMD160
is a hash algorithm with still good security properties. It is used by a
lot of crypto software (e.g. BitCoin...) Here is how this breaks
Python's HashLib:
$ python
Python 3.10.7 (main, Sep 8 2022, 14:34:29) [GCC 12.2.0] on linux
Type "help", "copyright", "credits" or "license" for more information.
>>> import hashlib
>>> h = hashlib.new('ripemd160')
Traceback (most recent call last):
File "/usr/lib/python3.10/hashlib.py", line 160, in __hash_new
return _hashlib.new(name, data, **kwargs)
ValueError: [digital envelope routines] unsupported
During handling of the above exception, another exception occurred:
Traceback (most recent call last):
File "<stdin>", line 1, in <module>
File "/usr/lib/python3.10/hashlib.py", line 166, in __hash_new
return __get_builtin_constructor(name)(data)
File "/usr/lib/python3.10/hashlib.py", line 123, in
__get_builtin_constructor
raise ValueError('unsupported hash type ' + name)
ValueError: unsupported hash type ripemd160
-richy.
--
Richard B. Kreckel
<https://in.terlu.de/~kreckel/>
-------------- next part --------------
A non-text attachment was scrubbed...
Name: OpenPGP_signature
Type: application/pgp-signature
Size: 840 bytes
Desc: OpenPGP digital signature
URL: <http://alioth-lists.debian.net/pipermail/pkg-openssl-devel/attachments/20220925/2527253b/attachment.sig>
More information about the Pkg-openssl-devel
mailing list