Commit - rpms/krb5 - 2ef37ab30d679328b361422aa40ec32f1fc138d3

rpms / krb5

Overview Files Commits Branches Forks Releases

Monitoring status:

Bugzilla Assignee:

Fedora:: jrische
EPEL:: abbra

`2ef37ab` Use SHA-256 instead of SHA-1 for PKINIT CMS digest

Authored and Committed by jrische 2 years ago

raw patch tree parent

2 files changed. 118 lines added. 1 lines removed.

Use-SHA256-instead-of-SHA1-for-PKINIT-CMS-digest.patch

    Use SHA-256 instead of SHA-1 for PKINIT CMS digest
    
    CMS digest and signature algorithm for the anonymous PKINIT is changed
    from SHA-1 to SHA-256. SHA-1 hasn't been considered secure anymore for
    this kind of purposes for some years already.
    
    Resolves: rhbz#2067121
    
    Signed-off-by: Julien Rische <jrische@redhat.com>

Fedora CI - scratch build
success

Package tests for 2ef37ab3: passed
2 years ago
Fedora CI - dist-git test
success

Package tests for 2ef37ab3: passed
2 years ago
Build completed
success

Built as krb5-1.19.2-7.fc37
2 years ago
Build completed
success

Built as krb5-1.19.2-7.eln115
2 years ago

Use-SHA256-instead-of-SHA1-for-PKINIT-CMS-digest.patch

file added

+113

krb5.spec

file modified

+5 -1

rpms / krb5

Source Code

2ef37ab Use SHA-256 instead of SHA-1 for PKINIT CMS digest

Authored and Committed by jrische 2 years ago

`2ef37ab` Use SHA-256 instead of SHA-1 for PKINIT CMS digest