[gnutls-devel] GnuTLS | Please update ca.pem with SHA256 hashsum (#906)

Development of GNU's TLS library gnutls-devel at lists.gnutls.org
Tue Jan 14 08:09:51 CET 2020

Dimitri John Ledkov created an issue: https://gitlab.com/gnutls/gnutls/issues/906

I'm struggling to convert PEM certificates into CSR to tweak and resign them.

The ca.pem certificate that is listed in the docs and used in compat tests only has MD5 and SH1 hashes. Can you also please add SHA256 hash to it?

As per ssl-pulse survey there are no SHA1 certs on the public internet anymore and Ubuntu/Debian OpenSSL rejects SHA1 certs in default configuration. (SECLEVEL=2)

Reply to this email directly or view it on GitLab: https://gitlab.com/gnutls/gnutls/issues/906
You're receiving this email because of your account on gitlab.com.

-------------- next part --------------
An HTML attachment was scrubbed...
URL: <https://lists.gnupg.org/pipermail/gnutls-devel/attachments/20200114/594ec292/attachment.html>

More information about the Gnutls-devel mailing list