[gnutls-devel] Guile-GnuTLS | gnutls-sign-algorithm-enum is missing a lot of values (#31)

Read-only notification of GnuTLS library development activities gnutls-devel at lists.gnutls.org
Sat Mar 1 14:51:09 CET 2025




Dariqq commented: https://gitlab.com/gnutls/guile/-/issues/31#note_2373988580


The following 29 sign algorithms are missing from the latest gnutls (3.8.9)

rsa-sha224
dsa-sha224
dsa-sha256
ecdsa-sha1
ecdsa-sha224
ecdsa-sha256
ecdsa-sha384
ecdsa-sha512
dsa-sha384
dsa-sha512
ecdsa-sha3-224
ecdsa-sha3-256
ecdsa-sha3-384
ecdsa-sha3-512
dsa-sha3-224
dsa-sha3-256
dsa-sha3-384
dsa-sha3-512
rsa-sha3-224
rsa-sha3-256
rsa-sha3-384
rsa-sha3-512
rsa-raw
gost-94
gost-256
gost-512
mldsa44
mldsa65
mldsa87


It seems like the `tests/list-sign-algorithms.scm` is doing a bad job catching this because it is passing while a lot of values are missing.

I also found some missing pk-algorithms (which the list-pk-algorithm test found).
mlkem768
mldsa44
mldsa65
mldsa87
mlkem1024

Is there a better way than manually checking the gnutls.h header and comparing?

Also I am a bit confused on the ordering in `guile/modules/gnutls/modules/build/enums.scm` and the export in `guile/modules/gnutls.in` . I would expect the order to match the order from the enum but with the sign-algorithms at least it does not hold true making it difficult to compare with the enum declaration .


Havent checked other enums for completeness.


Some of these have only been introduced in recent gnutls versions but the GNUTLS_SIGN_ECDSA_SHA256 from my certificate has been available in gnutls since version 2.99.2 (released 2011-05-26). Maybe this can be automated in some way?

-- 
Reply to this email directly or view it on GitLab: https://gitlab.com/gnutls/guile/-/issues/31#note_2373988580
You're receiving this email because of your account on gitlab.com.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <https://lists.gnupg.org/pipermail/gnutls-devel/attachments/20250301/a626bb62/attachment.html>


More information about the Gnutls-devel mailing list