1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
|
From 156f0101c88d4928f45ac95b0c3ab93dc964ba40 Mon Sep 17 00:00:00 2001
From: Richard Hughes <richard@hughsie.com>
Date: Mon, 17 Nov 2025 11:10:01 +0000
Subject: [PATCH 1/3] Do not try to change the GnuTLS system-wide config
To enable ML-DSA, either update your crypto-policy package or add
`secure-sig = ML-DSA-87` to `/etc/crypto-policies/back-ends/gnutls.config`
---
libjcat/jcat-gnutls-common.c | 3 ---
1 file changed, 3 deletions(-)
diff --git a/libjcat/jcat-gnutls-common.c b/libjcat/jcat-gnutls-common.c
index 2a14b1f..e763767 100644
--- a/libjcat/jcat-gnutls-common.c
+++ b/libjcat/jcat-gnutls-common.c
@@ -460,9 +460,6 @@ jcat_gnutls_global_log_cb(int level, const char *msg)
void
jcat_gnutls_global_init(void)
{
-#ifdef HAVE_GNUTLS_PQC
- gnutls_sign_set_secure(GNUTLS_SIGN_MLDSA87, GNUTLS_SIGN_FLAG_SECURE_FOR_CERTS);
-#endif
gnutls_global_set_log_level(3);
gnutls_global_set_log_function(jcat_gnutls_global_log_cb);
}
--
2.43.0
|
