Skip to content

GitLab

  • Projects
  • Groups
  • Snippets
  • Help
    • Loading...
  • Help
    • Help
    • Support
    • Community forum
    • Submit feedback
    • Contribute to GitLab
  • Sign in / Register
L
libbsd
  • Project overview
    • Project overview
    • Details
    • Activity
    • Releases
  • Repository
    • Repository
    • Files
    • Commits
    • Branches
    • Tags
    • Contributors
    • Graph
    • Compare
  • Issues 3
    • Issues 3
    • List
    • Boards
    • Labels
    • Service Desk
    • Milestones
  • Merge Requests 2
    • Merge Requests 2
  • CI / CD
    • CI / CD
    • Pipelines
    • Jobs
    • Schedules
  • Operations
    • Operations
    • Incidents
    • Environments
  • Analytics
    • Analytics
    • CI / CD
    • Repository
    • Value Stream
  • Wiki
    • Wiki
  • Snippets
    • Snippets
  • Members
    • Members
  • Collapse sidebar
  • Activity
  • Graph
  • Create a new issue
  • Jobs
  • Commits
  • Issue Boards
  • libbsd
  • libbsd
  • Issues
  • #2

Closed
Open
Opened Nov 04, 2019 by TomasKorbar@TomasKorbar

cryptographic implementations

Hi libbsd developers, As i found out, libbsd is using it's own internal implementation of sha512 and md5. This is unfortunate because imho it is less secure than using official implementations from for example openssl. Another issue is that openssl supports fips[0] mode which forbids fips non compliant cryptographic algorithms and when you are not using it, then fedora's fips feature [1] is not effective on libbsd. Would you be open to my merge request where i would add some configure options? These configure options would allow user to build libbsd with openssl and thus replace these internal implementations at least on linux. [0] - https://en.wikipedia.org/wiki/FIPS_140-2 [1] - https://www.dogtagpki.org/wiki/Configuring_FIPS_on_Fedora

To upload designs, you'll need to enable LFS and have an admin enable hashed storage. More information
Assignee
Assign to
None
Milestone
None
Assign milestone
Time tracking
None
Due date
None
Reference: libbsd/libbsd#2