Status: IN
LEGACY is the only predefined crypto policy that allows SHA-1 in digital signatures; the `DEFAULT:SHA1` subpolicy is the targeted alternative.
Source: repo:entries/2026/03/04/en-documentation-red_hat_enterprise_linux-9-html-security_hardening-using-the-sy.md