aboutsummaryrefslogtreecommitdiffstats
path: root/OpenKeychain/src
diff options
context:
space:
mode:
authorDominik Schürmann <dominik@dominikschuermann.de>2015-10-21 21:42:37 +0200
committerDominik Schürmann <dominik@dominikschuermann.de>2015-10-21 21:42:37 +0200
commit10fed404ae000a9cd6f8d357e85202f4c884f54e (patch)
treea7f9d44bab922b09e6160709a43f5bd5ecfd4edf /OpenKeychain/src
parent14d193a0f26c1e56e561d16a76b59f60dc6c7d91 (diff)
downloadopen-keychain-10fed404ae000a9cd6f8d357e85202f4c884f54e.tar.gz
open-keychain-10fed404ae000a9cd6f8d357e85202f4c884f54e.tar.bz2
open-keychain-10fed404ae000a9cd6f8d357e85202f4c884f54e.zip
SHA1 and RIPEMD160 are not declared insecure until widely deployed
Diffstat (limited to 'OpenKeychain/src')
-rw-r--r--OpenKeychain/src/main/java/org/sufficientlysecure/keychain/pgp/PgpSecurityConstants.java4
1 files changed, 2 insertions, 2 deletions
diff --git a/OpenKeychain/src/main/java/org/sufficientlysecure/keychain/pgp/PgpSecurityConstants.java b/OpenKeychain/src/main/java/org/sufficientlysecure/keychain/pgp/PgpSecurityConstants.java
index cbd8ce47a..7ad7b4d0f 100644
--- a/OpenKeychain/src/main/java/org/sufficientlysecure/keychain/pgp/PgpSecurityConstants.java
+++ b/OpenKeychain/src/main/java/org/sufficientlysecure/keychain/pgp/PgpSecurityConstants.java
@@ -79,8 +79,8 @@ public class PgpSecurityConstants {
*/
private static HashSet<Integer> sHashAlgorithmsWhitelist = new HashSet<>(Arrays.asList(
// MD5: broken
- // SHA1: broken
- // RIPEMD160: same security properties as SHA1
+ HashAlgorithmTags.SHA1, // TODO: disable when SHA256 is widely deployed
+ HashAlgorithmTags.RIPEMD160, // same security properties as SHA1, TODO: disable when SHA256 is widely deployed
// DOUBLE_SHA: not used widely
// MD2: not used widely
// TIGER_192: not used widely