[gnutls-devel] Supported MAC algorithms
n.mavrogiannopoulos at gmail.com
Tue Dec 22 10:35:13 CET 2015
On Mon, 2015-12-21 at 14:50 +0200, Jaak Ristioja wrote:
> The table of supported HMAC algorithms in the GnuTLS manual only
> MAC_MD5, MAC_SHA1, MAC_SHA256 and MAC_AEAD, whereas the enum
> gnutls_mac_algorithm_t in gnutls.h also lists GNUTLS_MAC_SHA384,
> GNUTLS_MAC_SHA512, GNUTLS_MAC_SHA224 etc. Are these HMAC algorithms
> really not supported or is the documentation incorrect?
This table lists the algorithms supported in the TLS protocol. SHA224
and SHA512 are not supported. SHA384 is supported by some ciphersuites
and is indeed missing.
> The GnuTLS documentation doesn't clearly state whether the HMAC
> implementations in GnuTLS are based on RFC 2104?
Why would that matter? This section describes the algorithms used in
TLS, so it should be apparent that the HMAC construction used is the
one referenced by TLS. If that's not sufficient, please suggest some
More information about the Gnutls-devel