On Wed, 12 Feb 2025 15:08, Lucas Mulling said: > On Wed Feb 12, 2025 at 9:50 AM -03, Clemens Lang wrote:
>> If you do a FIPS validation now, you’ll likely get a certificate in >> ~2 years, which then won’t be valid for 5, but only 3, because the >> build included support for SHA1. Makes some sense iff we are not allowed to extend the API. > Yes, also note that operations with SHA1 are not blocked by default, and > should work normally unless GCRY_FIPS_FLAG_REJECT_MD_SHA1 is explicitly set. Alright. Then let's add this too. Salam-Shalom, Werner -- The pioneers of a warless world are the youth that refuse military service. - A. Einstein
openpgp-digital-signature.asc
Description: PGP signature
_______________________________________________ Gcrypt-devel mailing list Gcrypt-devel@gnupg.org https://lists.gnupg.org/mailman/listinfo/gcrypt-devel
