diff options
| author | tb <> | 2022-01-14 08:38:06 +0000 |
|---|---|---|
| committer | tb <> | 2022-01-14 08:38:06 +0000 |
| commit | 2a284011fbab2624ef09302d0c806c76dd42b2c9 (patch) | |
| tree | c82726f940ee4796d12475c7295f11404867aae9 /src/lib/libcrypto/evp/c_all.c | |
| parent | 385790bbe258a0de5b6842a60a07a834e590fe1a (diff) | |
| download | openbsd-2a284011fbab2624ef09302d0c806c76dd42b2c9.tar.gz openbsd-2a284011fbab2624ef09302d0c806c76dd42b2c9.tar.bz2 openbsd-2a284011fbab2624ef09302d0c806c76dd42b2c9.zip | |
Remove legacy sign/verify from EVP_MD.
This removes m_dss.c, m_dss1.c, and m_ecdsa.c and the corresponding
public API EVP_{dss,dss1,ecdsa}().
This is basically the following OpenSSL commit. The mentioned change in
RSA is already present in rsa/rsa_pmeth.c.
ok inoguchi jsing
commit 7f572e958b13041056f377a62d3219633cfb1e8a
Author: Dr. Stephen Henson <steve@openssl.org>
Date: Wed Dec 2 13:57:04 2015 +0000
Remove legacy sign/verify from EVP_MD.
Remove sign/verify and required_pkey_type fields of EVP_MD: these are a
legacy from when digests were linked to public key types. All signing is
now handled by the corresponding EVP_PKEY_METHOD.
Only allow supported digest types in RSA EVP_PKEY_METHOD: other algorithms
already block unsupported types.
Remove now obsolete EVP_dss1() and EVP_ecdsa().
Reviewed-by: Richard Levitte <levitte@openssl.org>
Plus OpenSSL commit 625a9baf11c1dd94f17e5876b6ee8d6271b3921d for m_dss.c
Diffstat (limited to 'src/lib/libcrypto/evp/c_all.c')
| -rw-r--r-- | src/lib/libcrypto/evp/c_all.c | 16 |
1 files changed, 1 insertions, 15 deletions
diff --git a/src/lib/libcrypto/evp/c_all.c b/src/lib/libcrypto/evp/c_all.c index 9e9d39d5ab..690215c8e8 100644 --- a/src/lib/libcrypto/evp/c_all.c +++ b/src/lib/libcrypto/evp/c_all.c | |||
| @@ -1,4 +1,4 @@ | |||
| 1 | /* $OpenBSD: c_all.c,v 1.26 2019/03/17 18:07:41 tb Exp $ */ | 1 | /* $OpenBSD: c_all.c,v 1.27 2022/01/14 08:38:05 tb Exp $ */ |
| 2 | /* Copyright (C) 1995-1998 Eric Young (eay@cryptsoft.com) | 2 | /* Copyright (C) 1995-1998 Eric Young (eay@cryptsoft.com) |
| 3 | * All rights reserved. | 3 | * All rights reserved. |
| 4 | * | 4 | * |
| @@ -263,24 +263,10 @@ OpenSSL_add_all_digests_internal(void) | |||
| 263 | EVP_add_digest_alias(SN_md5, "ssl3-md5"); | 263 | EVP_add_digest_alias(SN_md5, "ssl3-md5"); |
| 264 | #endif | 264 | #endif |
| 265 | 265 | ||
| 266 | #if !defined(OPENSSL_NO_SHA) | ||
| 267 | #ifndef OPENSSL_NO_DSA | ||
| 268 | EVP_add_digest(EVP_dss()); | ||
| 269 | #endif | ||
| 270 | #endif | ||
| 271 | #if !defined(OPENSSL_NO_SHA) && !defined(OPENSSL_NO_SHA1) | 266 | #if !defined(OPENSSL_NO_SHA) && !defined(OPENSSL_NO_SHA1) |
| 272 | EVP_add_digest(EVP_sha1()); | 267 | EVP_add_digest(EVP_sha1()); |
| 273 | EVP_add_digest_alias(SN_sha1, "ssl3-sha1"); | 268 | EVP_add_digest_alias(SN_sha1, "ssl3-sha1"); |
| 274 | EVP_add_digest_alias(SN_sha1WithRSAEncryption, SN_sha1WithRSA); | 269 | EVP_add_digest_alias(SN_sha1WithRSAEncryption, SN_sha1WithRSA); |
| 275 | #ifndef OPENSSL_NO_DSA | ||
| 276 | EVP_add_digest(EVP_dss1()); | ||
| 277 | EVP_add_digest_alias(SN_dsaWithSHA1, SN_dsaWithSHA1_2); | ||
| 278 | EVP_add_digest_alias(SN_dsaWithSHA1, "DSS1"); | ||
| 279 | EVP_add_digest_alias(SN_dsaWithSHA1, "dss1"); | ||
| 280 | #endif | ||
| 281 | #ifndef OPENSSL_NO_ECDSA | ||
| 282 | EVP_add_digest(EVP_ecdsa()); | ||
| 283 | #endif | ||
| 284 | #endif | 270 | #endif |
| 285 | 271 | ||
| 286 | #ifndef OPENSSL_NO_GOST | 272 | #ifndef OPENSSL_NO_GOST |