[gnutls-devel] GnuTLS | GOSTR341194, RIPEMD160: mark as insecure for digital signatures (!1175)
Development of GNU's TLS library
gnutls-devel at lists.gnutls.org
Tue Jan 21 10:47:36 CET 2020
Nikos Mavrogiannopoulos created a merge request: https://gitlab.com/gnutls/gnutls/merge_requests/1175
Project:Branches: nmav/gnutls:tmp-mark-gost94-as-broken to gnutls/gnutls:master
Author: Nikos Mavrogiannopoulos
Although there are no practical attacks known on the algorithms, one is known to be weaker than its theoretical strength, legacy and the other has no practical uses for Internet PKI. Mark them as insecure to reduce the attack surface.
## Checklist
* [x] Commits have `Signed-off-by:` with name/author being identical to the commit author
* [ ] Code modified for feature
* [ ] Test suite updated with functionality tests
* [ ] Test suite updated with negative tests
* [ ] Documentation updated / NEWS entry present (for non-trivial changes)
* [ ] CI timeout is 2h or higher (see Settings/CICD/General pipelines/Timeout)
## Reviewer's checklist:
* [ ] Any issues marked for closing are addressed
* [ ] There is a test suite reasonably covering new functionality or modifications
* [ ] Function naming, parameters, return values, types, etc., are consistent and according to `CONTRIBUTION.md`
* [ ] This feature/change has adequate documentation added
* [ ] No obvious mistakes in the code
--
Reply to this email directly or view it on GitLab: https://gitlab.com/gnutls/gnutls/merge_requests/1175
You're receiving this email because of your account on gitlab.com.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <https://lists.gnupg.org/pipermail/gnutls-devel/attachments/20200121/7bfdcec6/attachment.html>
More information about the Gnutls-devel
mailing list