[prev in list] [next in list] [prev in thread] [next in thread] 

List:       gnutls-dev
Subject:    Re: [gnutls-devel] Supported MAC algorithms
From:       Nikos Mavrogiannopoulos <nmav () gnutls ! org>
Date:       2015-12-22 15:21:21
Message-ID: CAJU7zaJgEFd1++s4OebNSdVWWKn-=jigfzueravi05PYxgxmsw () mail ! gmail ! com
[Download RAW message or body]

On Tue, Dec 22, 2015 at 12:12 PM, Jaak Ristioja <jaak.ristioja@cyber.ee> wrote:
>>> The GnuTLS documentation doesn't clearly state whether the HMAC
>>> implementations in GnuTLS are based on RFC 2104?
>> Why would that matter? This section describes the algorithms used in
>> TLS, so it should be apparent that the HMAC construction used is the
>> one referenced by TLS. If that's not sufficient, please suggest some
>> text.
>
> I think it is confusing that subsection "8.3 Hash and HMAC functions"
> which refers to the Table 3.2 of the supported HMAC algorithms with is
> under section "8 Using GnuTLS as a cryptographic library" which I think
> is rather TLS-agnostic. I think subsection 8.3 should have a separate
> table listing all the algorithms supported by GnuTLS as a cryptographic
> library, whereas the description of Table 3.2 should state "Supported
> MAC algorithms in the TLS record layer" and the second paragraph under
> 3.3.1 should also be corrected accordingly.

You're right. I've committed an update which uses the whole list of
algorithms under the crypto section. Let me know if that addresses the
issue.
https://gitlab.com/gnutls/gnutls/commit/66e31a847fcd13c0374fea719f1191c6411f2fa6

regards,
Nikos

_______________________________________________
Gnutls-devel mailing list
Gnutls-devel@lists.gnutls.org
http://lists.gnupg.org/mailman/listinfo/gnutls-devel
[prev in list] [next in list] [prev in thread] [next in thread]