bcgit
Unable to Generate ML-DSA and SLH-DSA Certificates with Keytool: ContextParameterSpec Issue?
I am encountering an issue when attempting to generate ML-DSA and SLH-DSA certificates using the Java keytool. It seems to be related to the ContextParameterSpec. Specifically, I am unsure if this is a bug or if there are additional options that need to be provided when running the keytool command.
Thanks for the report. Hmmm. Okay, there's no encoding rules for the ContextParameter spec at the moment, while we're probably going to see one eventually, given issues like this we should be returning null if the default zero length context is in use since pretty much every non-BC based tool is likely to break with the new algorithms.
Try what's in https://downloads.bouncycastle.org/betas and let us know how it goes.
