[gnutls-devel] Supported MAC algorithms
Nikos Mavrogiannopoulos
nmav at gnutls.org
Tue Dec 22 16:21:21 CET 2015
On Tue, Dec 22, 2015 at 12:12 PM, Jaak Ristioja <jaak.ristioja at cyber.ee> wrote:
>>> The GnuTLS documentation doesn't clearly state whether the HMAC
>>> implementations in GnuTLS are based on RFC 2104?
>> Why would that matter? This section describes the algorithms used in
>> TLS, so it should be apparent that the HMAC construction used is the
>> one referenced by TLS. If that's not sufficient, please suggest some
>> text.
>
> I think it is confusing that subsection "8.3 Hash and HMAC functions"
> which refers to the Table 3.2 of the supported HMAC algorithms with is
> under section "8 Using GnuTLS as a cryptographic library" which I think
> is rather TLS-agnostic. I think subsection 8.3 should have a separate
> table listing all the algorithms supported by GnuTLS as a cryptographic
> library, whereas the description of Table 3.2 should state "Supported
> MAC algorithms in the TLS record layer" and the second paragraph under
> 3.3.1 should also be corrected accordingly.
You're right. I've committed an update which uses the whole list of
algorithms under the crypto section. Let me know if that addresses the
issue.
https://gitlab.com/gnutls/gnutls/commit/66e31a847fcd13c0374fea719f1191c6411f2fa6
regards,
Nikos
More information about the Gnutls-devel
mailing list