[Rpm-maint] [rpm-software-management/rpm] Add ability to calculate filedigests using Streebog-256 and Streebog-… (#1082)

StZhukov notifications at github.com
Thu Feb 20 20:33:49 UTC 2020 

…512 RFC 6986.

This patch adds ability to calculate filedigests (hashsums of files inside rpm package) using Streebog-256 and Streebog-512 - hashsum calculating algorithms standartized by GOST R 34.10-2012, Russian national standard.

Streebog (another name is Stribog) has existed for quite long time in libgcrypt, and now, after RPM switched to libgcrypt as the default crypto backend, this patch adds ability to use Streebog-256 and Streebog-512 to calculate file digest.

Our plan is to use these digests to sign them using rpmsign --signfile. First, I would like to receive feedback and get this initial implemetation merged. After that I am planning to extend usage of GOST.

I previously implemented the same in rpm5 (https://abf.io/soft/rpm5/commits/master), and it works. As ROSA is switching from rpm5 to rpm4, we would like to contribute our work to upstream. It may be useful for other people who have to follow some special information security requirements or those who do not trust other algorithms for some reasons.
You can view, comment on, or merge this pull request online at:

  https://github.com/rpm-software-management/rpm/pull/1082

-- Commit Summary --

  * Add ability to calculate filedigests using Streebog-256 and Streebog-512 RFC 6986.

-- File Changes --

    M build/files.c (5)
    M configure.ac (1)
    M lib/rpmds.c (11)
    M rpmio/digest_libgcrypt.c (6)
    M rpmio/rpmpgp.c (2)
    M rpmio/rpmpgp.h (2)

-- Patch Links --

https://github.com/rpm-software-management/rpm/pull/1082.patch
https://github.com/rpm-software-management/rpm/pull/1082.diff

-- 
You are receiving this because you are subscribed to this thread.
Reply to this email directly or view it on GitHub:
https://github.com/rpm-software-management/rpm/pull/1082
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.rpm.org/pipermail/rpm-maint/attachments/20200220/ed896a62/attachment-0001.html>

More information about the Rpm-maint mailing list