@adriansev noted that none of the default message digest algorithms are supported out-of-the-box by OpenSSL 3 / RHEL 9.

The current code (https://github.com/xrootd/xrootd/blob/master/src/XrdSecgsi/XrdSecProtocolgsi.cc#L161) has set sha1:md5.

Can we simply update this to sha256 (remove sha1 and md5)? Don't know when sha256 was added to OpenSSL (could have been named SSLeay at the time!) but I can't imagine we support clients old enough that they don't have sha256.


Reply to this email directly, view it on GitHub, or unsubscribe.
You are receiving this because you are subscribed to this thread.Message ID: <xrootd/xrootd/issues/2030@github.com>

[ { "@context": "http://schema.org", "@type": "EmailMessage", "potentialAction": { "@type": "ViewAction", "target": "https://github.com/xrootd/xrootd/issues/2030", "url": "https://github.com/xrootd/xrootd/issues/2030", "name": "View Issue" }, "description": "View this Issue on GitHub", "publisher": { "@type": "Organization", "name": "GitHub", "url": "https://github.com" } } ]

Use REPLY-ALL to reply to list

To unsubscribe from the XROOTD-DEV list, click the following link:
https://listserv.slac.stanford.edu/cgi-bin/wa?SUBED1=XROOTD-DEV&A=1