And OpenSSL implements none. Not sure how anyone is going to use it. https://mta.openssl.org/pipermail/openssl-dev/2016-May/007086.html … /cc @tqbf @matthew_d_green
Just use its SHA-512 API and chop off half the bits, and pretend NIST never spec'd the variant with its own IV, I guess.
-
-
This is how we end up with generations of devs that implement horrible crypto. No custom chopping, let's pick an algo with a clean API.
-
Again, we’re talking about MACs, not general-purpose hashes.
End of conversation
New conversation -
-
-
Yeah, but then you document your API to use SHA-512/256 and some poor Go programmer is going to have a sad day. Unfortunate situation

-
I recall very similar discussions during the (long) transition from md5 to sha-1.
End of conversation
New conversation -
Loading seems to be taking a while.
Twitter may be over capacity or experiencing a momentary hiccup. Try again or visit Twitter Status for more information.