[gnutls-devel] GnuTLS | Add GOST-CNT ciphersuite support (!1119)

Development of GNU's TLS library gnutls-devel at lists.gnutls.org
Wed Nov 13 13:00:06 CET 2019




Nikos Mavrogiannopoulos commented on a discussion on lib/priority.c: https://gitlab.com/gnutls/gnutls/merge_requests/1119#note_243964434

>  #endif
>  #ifdef ENABLE_DHE
>  	GNUTLS_KX_DHE_RSA,
> +#endif
> +#ifdef ENABLE_GOST
> +	GNUTLS_KX_VKO_GOST_12,

MD5 as a signature hash algorithm I think is marked as insecure, and if we follow the idea above it will not be "markable" as secure. It could be added in the priority strings, though once negotiated gnutls will fail as it is marked as insecure.

-- 
Reply to this email directly or view it on GitLab: https://gitlab.com/gnutls/gnutls/merge_requests/1119#note_243964434
You're receiving this email because of your account on gitlab.com.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <https://lists.gnupg.org/pipermail/gnutls-devel/attachments/20191113/58234c13/attachment-0001.html>


More information about the Gnutls-devel mailing list