Re: [evolution-patches] Using gpg2 with SHA512



On Wed, 2008-02-27 at 15:05 +0100, Steffen Michalke wrote:
> Hi,
> 
> I'm using gpg v.2.0.8/libgcrypt 1.4.0 and wanted to test keys with
> maximum strength. Therefor I created a pair of keys with gpg2
> --enable-dsa2.
> 
> These keys are usable in Thunderbird, but can't be handled by Evolution
> (v2.21.92 btw.). The reason is that SHA-1 is hard wired as the hash
> method.
> 
> From Thunderbird I learned that I had to use SHA-512 instead. I enclosed
> three patches against evolution-data-server and evolution (v2.21.92
> both) which hard code SHA-512 as hash algorhythm for gpg.
> 
> I confess that I'm not a C programmer so I don't know whether I broke
> something but the patches work for signing and encryption.

There's a bug about this in Bugzilla somewhere, I think... basically,
the Right Fix(tm) is to provide a way for the user to choose what hash
algo Evolution should use.

We can't go hard-coding it to SHA-512, because that will break it for other users.

Jeff




[Date Prev][Date Next]   [Thread Prev][Thread Next]   [Thread Index] [Date Index] [Author Index]