On Fri, 20 Feb 2026 02:17:36 GMT, Mark Powers <[email protected]> wrote:
> [JDK-8369917](https://bugs.openjdk.org/browse/JDK-8369917) src/java.base/share/classes/sun/security/provider/HSS.java line 947: > 945: Objects.requireNonNull(sha256), > 946: preZi, hashLen, preCandidate, 22 > + i * n, n); > 947: } I think that the choice between SHA256 and SHAKE would better be done in the digestFixedLengthPreprocessed() method. E.g. you can pass it a MessageDigest object that can be initialized in the lmotsPubKeyCandidate() method to either SHA2.SHA256 or SHA3.SHAKE256Hash and based on its type digestFixedLengthPreprocessed() could decide what to call. ------------- PR Review Comment: https://git.openjdk.org/jdk/pull/29833#discussion_r2873039499
