From e18bb74a5e7b9f222a92f40db64cb9aa83f8ac82 Mon Sep 17 00:00:00 2001
From: csoler <csoler@users.sourceforge.net>
Date: Fri, 10 Jan 2025 22:47:46 +0100
Subject: [PATCH] added non-backward compatible flag change for v0.7 about sha1
 certs

---
 retroshare.pri | 16 +++++++++++++---
 1 file changed, 13 insertions(+), 3 deletions(-)

diff --git a/retroshare.pri b/retroshare.pri
index 22bf11d3f..06842064c 100644
--- a/retroshare.pri
+++ b/retroshare.pri
@@ -286,7 +286,7 @@ isEmpty(RS_THREAD_LIB):RS_THREAD_LIB = pthread
 #
 #  V07_NON_BACKWARD_COMPATIBLE_CHANGE_002:
 #
-#     What: Use RSA+SHA256 instead of RSA+SHA1 for PGP certificate signatures
+#     What: Use RSA+SHA256 instead of RSA+SHA1 for SSL certificates 
 #
 #     Why:  Sha1 is likely to be prone to primary collisions anytime soon, so it is urgent to turn to a more secure solution.
 #
@@ -296,16 +296,26 @@ isEmpty(RS_THREAD_LIB):RS_THREAD_LIB = pthread
 #
 #    What: Do not hash PGP certificate twice when signing
 #
-#  	 Why: hasing twice is not per se a security issue, but it makes it harder to change the settings for hashing.
+#    Why: hasing twice is not per se a security issue, but it makes it harder to change the settings for hashing.
 #
-#  	 Backward compat: patched peers cannot connect to non patched peers older than Nov 2017.
+#    Backward compat: patched peers cannot connect to non patched peers older than Nov 2017.
 #
 #  V07_NON_BACKWARD_COMPATIBLE_CHANGE_004:
 #
 #    What: Do not probe that GXS tunnels accept fast items. Just assume they do.
+#
 #    Why:  Avoids sending probe packets
+#
 #    BackwardCompat: old RS before Mai 2019 will not be able to distant chat.
 #
+#  V07_NON_BACKWARD_COMPATIBLE_CHANGE_005:
+#
+#    What: Stop accepting certificates signed with sha1 algorithm
+#
+#    Why:  Sha1 has been declared insecure and shouldn't be used anymore. 
+#
+#    BackwardCompat: Retroshare profiles generated before Nov.2024 with openpgp-sdk may still use sha1
+#
 ###########################################################################################################################################################
 
 ###########################################################################################################################################################