This ticket is to collect possible issues to be fixed for running GnuPG on FIPS enabled machine.
Description
Description
| Status | Assigned | Task | ||
|---|---|---|---|---|
| Open | None | T6191 FIPS: Supporting running FIPS enabled machine | ||
| Open | None | T5930 Use the FIPS-compatible digest&sign API | ||
| Open | • gniibe | T5964 gnupg should use the KDFs implemented in libgcrypt |
Event Timeline
Comment Actions
Here is a list of possible issues:
- OpenPGP format for encrypted secret keys
- S2K uses SHA-1
- gpg-agent private key format
- using SHA-1 for KDF
- using OCB for encryption