P.S.: Steffen Nurpmeso wrote in <20240921012612.go31nxV7@steffen%sdaoden.eu>: |Steffen Nurpmeso wrote in | <20240920231847.qtYiT9Vk@steffen%sdaoden.eu>: ||Tomáš Korbař wrote in || <[email protected]>: |||Hi everyone, |||Fedora 41 forbids using sha1 by crypto libraries by default, and thus \ |||tests |||have been broken. Could anyone of the devs please consider changing the |||algorithm to sha256? See attached patch which fixed the issue. | |Thanks again (i am the only dev by the way). |While testing i found out that OpenSSL 3.3.2 does no(t) (longer) |support Blake2 digests for S/MIME, so even more thanks to you for |reporting the test issue!
Pure rubbish, it likely never did. But i used one lookup array for all digests, and documented Blake2 for S/MIME, which was thus wrong. (Thanks to Viktor Dukhovni!) I even realized that LibReSSL does not support Blake2 at all, which matches badly the fact that we de facto encourage it since at least 2018 (and it *is* used in a number of places, is it), so this likely has to be changed to, well, i think we have to go SHA-3 thus .. The TODO list for v14.10 tends to get longer, instead of shorter.. --steffen | |Der Kragenbaer, The moon bear, |der holt sich munter he cheerfully and one by one |einen nach dem anderen runter wa.ks himself off |(By Robert Gernhardt)
