Remove SHA-0 support.

SHA-0 was withdrawn shortly after publication 20 years ago and replaced with SHA-1. This will require a major crank. ok bcook@, jsing@
author: doug <> 2015-09-13 21:09:56 +0000
committer: doug <> 2015-09-13 21:09:56 +0000
commit: 3a95df64bde1592af373f6d58178d0314908dbbd (patch)
tree: 982a180264ee66bd2bae30aea737ff5770b8509b /src/lib/libcrypto/evp
parent: dcd4d5509d6bf753588a993688daf1132f50a7ed (diff)
download: openbsd-3a95df64bde1592af373f6d58178d0314908dbbd.tar.gz
openbsd-3a95df64bde1592af373f6d58178d0314908dbbd.tar.bz2
openbsd-3a95df64bde1592af373f6d58178d0314908dbbd.zip
3 files changed, 3 insertions, 122 deletions
diff --git a/src/lib/libcrypto/evp/c_all.c b/src/lib/libcrypto/evp/c_all.c
index 5f9df3a7ad..6568f2ba5a 100644
--- a/src/lib/libcrypto/evp/c_all.c
+++ b/src/lib/libcrypto/evp/c_all.c
@@ -1,4 +1,4 @@
-/* $OpenBSD: c_all.c,v 1.17 2015/06/20 01:07:24 doug Exp $ */
+/* $OpenBSD: c_all.c,v 1.18 2015/09/13 21:09:56 doug Exp $ */
 /* Copyright (C) 1995-1998 Eric Young (eay@cryptsoft.com)
 * All rights reserved.
 *
@@ -238,8 +238,7 @@ OpenSSL_add_all_digests(void)
        EVP_add_digest_alias(SN_md5, "ssl3-md5");
 #endif
-#if !defined(OPENSSL_NO_SHA) && !defined(OPENSSL_NO_SHA0)
+#if !defined(OPENSSL_NO_SHA)
-        EVP_add_digest(EVP_sha());
 #ifndef OPENSSL_NO_DSA
        EVP_add_digest(EVP_dss());
 #endif
diff --git a/src/lib/libcrypto/evp/evp.h b/src/lib/libcrypto/evp/evp.h
index 57f8753ced..c9a11c3a5f 100644
--- a/src/lib/libcrypto/evp/evp.h
+++ b/src/lib/libcrypto/evp/evp.h
@@ -1,4 +1,4 @@
-/* $OpenBSD: evp.h,v 1.45 2015/06/20 01:07:24 doug Exp $ */
+/* $OpenBSD: evp.h,v 1.46 2015/09/13 21:09:56 doug Exp $ */
 /* Copyright (C) 1995-1998 Eric Young (eay@cryptsoft.com)
 * All rights reserved.
 *
@@ -655,7 +655,6 @@ const EVP_MD *EVP_md4(void);
 const EVP_MD *EVP_md5(void);
 #endif
 #ifndef OPENSSL_NO_SHA
-const EVP_MD *EVP_sha(void);
 const EVP_MD *EVP_sha1(void);
 const EVP_MD *EVP_dss(void);
 const EVP_MD *EVP_dss1(void);
diff --git a/src/lib/libcrypto/evp/m_sha.c b/src/lib/libcrypto/evp/m_sha.c
deleted file mode 100644
index c8de337839..0000000000
--- a/src/lib/libcrypto/evp/m_sha.c
+++ /dev/null
@@ -1,117 +0,0 @@
-/* $OpenBSD: m_sha.c,v 1.16 2014/07/13 09:30:02 miod Exp $ */
-/* Copyright (C) 1995-1998 Eric Young (eay@cryptsoft.com)
- * All rights reserved.
- *
- * This package is an SSL implementation written
- * by Eric Young (eay@cryptsoft.com).
- * The implementation was written so as to conform with Netscapes SSL.
- *
- * This library is free for commercial and non-commercial use as long as
- * the following conditions are aheared to.  The following conditions
- * apply to all code found in this distribution, be it the RC4, RSA,
- * lhash, DES, etc., code; not just the SSL code.  The SSL documentation
- * included with this distribution is covered by the same copyright terms
- * except that the holder is Tim Hudson (tjh@cryptsoft.com).
- *
- * Copyright remains Eric Young's, and as such any Copyright notices in
- * the code are not to be removed.
- * If this package is used in a product, Eric Young should be given attribution
- * as the author of the parts of the library used.
- * This can be in the form of a textual message at program startup or
- * in documentation (online or textual) provided with the package.
- *
- * Redistribution and use in source and binary forms, with or without
- * modification, are permitted provided that the following conditions
- * are met:
- * 1. Redistributions of source code must retain the copyright
- *    notice, this list of conditions and the following disclaimer.
- * 2. Redistributions in binary form must reproduce the above copyright
- *    notice, this list of conditions and the following disclaimer in the
- *    documentation and/or other materials provided with the distribution.
- * 3. All advertising materials mentioning features or use of this software
- *    must display the following acknowledgement:
- *    "This product includes cryptographic software written by
- *     Eric Young (eay@cryptsoft.com)"
- *    The word 'cryptographic' can be left out if the rouines from the library
- *    being used are not cryptographic related :-).
- * 4. If you include any Windows specific code (or a derivative thereof) from
- *    the apps directory (application code) you must include an acknowledgement:
- *    "This product includes software written by Tim Hudson (tjh@cryptsoft.com)"
- *
- * THIS SOFTWARE IS PROVIDED BY ERIC YOUNG ``AS IS'' AND
- * ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE
- * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE
- * ARE DISCLAIMED.  IN NO EVENT SHALL THE AUTHOR OR CONTRIBUTORS BE LIABLE
- * FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL
- * DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS
- * OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION)
- * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT
- * LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY
- * OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF
- * SUCH DAMAGE.
- *
- * The licence and distribution terms for any publically available version or
- * derivative of this code cannot be changed.  i.e. this code cannot simply be
- * copied and put under another distribution licence
- * [including the GNU Public Licence.]
- */
-#include <stdio.h>
-#include <openssl/opensslconf.h>
-#if !defined(OPENSSL_NO_SHA) && !defined(OPENSSL_NO_SHA0)
-#include <openssl/evp.h>
-#include <openssl/objects.h>
-#include <openssl/x509.h>
-#ifndef OPENSSL_NO_RSA
-#include <openssl/rsa.h>
-#endif
-static int
-init(EVP_MD_CTX *ctx)
-{
-        return SHA_Init(ctx->md_data);
-}
-static int
-update(EVP_MD_CTX *ctx, const void *data, size_t count)
-{
-        return SHA_Update(ctx->md_data, data, count);
-}
-static int
-final(EVP_MD_CTX *ctx, unsigned char *md)
-{
-        return SHA_Final(md, ctx->md_data);
-}
-static const EVP_MD sha_md = {
-        .type = NID_sha,
-        .pkey_type = NID_shaWithRSAEncryption,
-        .md_size = SHA_DIGEST_LENGTH,
-        .flags = 0,
-        .init = init,
-        .update = update,
-        .final = final,
-        .copy = NULL,
-        .cleanup = NULL,
-#ifndef OPENSSL_NO_RSA
-        .sign = (evp_sign_method *)RSA_sign,
-        .verify = (evp_verify_method *)RSA_verify,
-        .required_pkey_type = {
-                EVP_PKEY_RSA, EVP_PKEY_RSA2, 0, 0,
-        },
-#endif
-        .block_size = SHA_CBLOCK,
-        .ctx_size = sizeof(EVP_MD *) + sizeof(SHA_CTX),
-};
-const EVP_MD *
-EVP_sha(void)
-{
-        return (&sha_md);
-}
-#endif
author	doug <>	2015-09-13 21:09:56 +0000
committer	doug <>	2015-09-13 21:09:56 +0000
commit	3a95df64bde1592af373f6d58178d0314908dbbd (patch)
tree	982a180264ee66bd2bae30aea737ff5770b8509b /src/lib/libcrypto/evp
parent	dcd4d5509d6bf753588a993688daf1132f50a7ed (diff)
download	openbsd-3a95df64bde1592af373f6d58178d0314908dbbd.tar.gz openbsd-3a95df64bde1592af373f6d58178d0314908dbbd.tar.bz2 openbsd-3a95df64bde1592af373f6d58178d0314908dbbd.zip

diff --git a/src/lib/libcrypto/evp/c_all.c b/src/lib/libcrypto/evp/c_all.c index 5f9df3a7ad..6568f2ba5a 100644 --- a/src/lib/libcrypto/evp/c_all.c +++ b/src/lib/libcrypto/evp/c_all.c
@@ -1,4 +1,4 @@
1	/* $OpenBSD: c_all.c,v 1.17 2015/06/20 01:07:24 doug Exp $ */	1	/* $OpenBSD: c_all.c,v 1.18 2015/09/13 21:09:56 doug Exp $ */
2	/* Copyright (C) 1995-1998 Eric Young (eay@cryptsoft.com)	2	/* Copyright (C) 1995-1998 Eric Young (eay@cryptsoft.com)
3	* All rights reserved.	3	* All rights reserved.
4	*	4	*
@@ -238,8 +238,7 @@ OpenSSL_add_all_digests(void)
238	EVP_add_digest_alias(SN_md5, "ssl3-md5");	238	EVP_add_digest_alias(SN_md5, "ssl3-md5");
239	#endif	239	#endif
240		240
241	#if !defined(OPENSSL_NO_SHA) && !defined(OPENSSL_NO_SHA0)	241	#if !defined(OPENSSL_NO_SHA)
242	EVP_add_digest(EVP_sha());
243	#ifndef OPENSSL_NO_DSA	242	#ifndef OPENSSL_NO_DSA
244	EVP_add_digest(EVP_dss());	243	EVP_add_digest(EVP_dss());
245	#endif	244	#endif


diff --git a/src/lib/libcrypto/evp/evp.h b/src/lib/libcrypto/evp/evp.h index 57f8753ced..c9a11c3a5f 100644 --- a/src/lib/libcrypto/evp/evp.h +++ b/src/lib/libcrypto/evp/evp.h
@@ -1,4 +1,4 @@
1	/* $OpenBSD: evp.h,v 1.45 2015/06/20 01:07:24 doug Exp $ */	1	/* $OpenBSD: evp.h,v 1.46 2015/09/13 21:09:56 doug Exp $ */
2	/* Copyright (C) 1995-1998 Eric Young (eay@cryptsoft.com)	2	/* Copyright (C) 1995-1998 Eric Young (eay@cryptsoft.com)
3	* All rights reserved.	3	* All rights reserved.
4	*	4	*
@@ -655,7 +655,6 @@ const EVP_MD *EVP_md4(void);
655	const EVP_MD *EVP_md5(void);	655	const EVP_MD *EVP_md5(void);
656	#endif	656	#endif
657	#ifndef OPENSSL_NO_SHA	657	#ifndef OPENSSL_NO_SHA
658	const EVP_MD *EVP_sha(void);
659	const EVP_MD *EVP_sha1(void);	658	const EVP_MD *EVP_sha1(void);
660	const EVP_MD *EVP_dss(void);	659	const EVP_MD *EVP_dss(void);
661	const EVP_MD *EVP_dss1(void);	660	const EVP_MD *EVP_dss1(void);


diff --git a/src/lib/libcrypto/evp/m_sha.c b/src/lib/libcrypto/evp/m_sha.c deleted file mode 100644 index c8de337839..0000000000 --- a/src/lib/libcrypto/evp/m_sha.c +++ /dev/null
@@ -1,117 +0,0 @@
1	/* $OpenBSD: m_sha.c,v 1.16 2014/07/13 09:30:02 miod Exp $ */
2	/* Copyright (C) 1995-1998 Eric Young (eay@cryptsoft.com)
3	* All rights reserved.
4	*
5	* This package is an SSL implementation written
6	* by Eric Young (eay@cryptsoft.com).
7	* The implementation was written so as to conform with Netscapes SSL.
8	*
9	* This library is free for commercial and non-commercial use as long as
10	* the following conditions are aheared to. The following conditions
11	* apply to all code found in this distribution, be it the RC4, RSA,
12	* lhash, DES, etc., code; not just the SSL code. The SSL documentation
13	* included with this distribution is covered by the same copyright terms
14	* except that the holder is Tim Hudson (tjh@cryptsoft.com).
15	*
16	* Copyright remains Eric Young's, and as such any Copyright notices in
17	* the code are not to be removed.
18	* If this package is used in a product, Eric Young should be given attribution
19	* as the author of the parts of the library used.
20	* This can be in the form of a textual message at program startup or
21	* in documentation (online or textual) provided with the package.
22	*
23	* Redistribution and use in source and binary forms, with or without
24	* modification, are permitted provided that the following conditions
25	* are met:
26	* 1. Redistributions of source code must retain the copyright
27	* notice, this list of conditions and the following disclaimer.
28	* 2. Redistributions in binary form must reproduce the above copyright
29	* notice, this list of conditions and the following disclaimer in the
30	* documentation and/or other materials provided with the distribution.
31	* 3. All advertising materials mentioning features or use of this software
32	* must display the following acknowledgement:
33	* "This product includes cryptographic software written by
34	* Eric Young (eay@cryptsoft.com)"
35	* The word 'cryptographic' can be left out if the rouines from the library
36	* being used are not cryptographic related :-).
37	* 4. If you include any Windows specific code (or a derivative thereof) from
38	* the apps directory (application code) you must include an acknowledgement:
39	* "This product includes software written by Tim Hudson (tjh@cryptsoft.com)"
40	*
41	* THIS SOFTWARE IS PROVIDED BY ERIC YOUNG ``AS IS'' AND
42	* ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE
43	* IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE
44	* ARE DISCLAIMED. IN NO EVENT SHALL THE AUTHOR OR CONTRIBUTORS BE LIABLE
45	* FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL
46	* DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS
47	* OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION)
48	* HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT
49	* LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY
50	* OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF
51	* SUCH DAMAGE.
52	*
53	* The licence and distribution terms for any publically available version or
54	* derivative of this code cannot be changed. i.e. this code cannot simply be
55	* copied and put under another distribution licence
56	* [including the GNU Public Licence.]
57	*/
58
59	#include <stdio.h>
60
61	#include <openssl/opensslconf.h>
62
63	#if !defined(OPENSSL_NO_SHA) && !defined(OPENSSL_NO_SHA0)
64
65	#include <openssl/evp.h>
66	#include <openssl/objects.h>
67	#include <openssl/x509.h>
68
69	#ifndef OPENSSL_NO_RSA
70	#include <openssl/rsa.h>
71	#endif
72
73	static int
74	init(EVP_MD_CTX *ctx)
75	{
76	return SHA_Init(ctx->md_data);
77	}
78
79	static int
80	update(EVP_MD_CTX ctx, const void data, size_t count)
81	{
82	return SHA_Update(ctx->md_data, data, count);
83	}
84
85	static int
86	final(EVP_MD_CTX ctx, unsigned char md)
87	{
88	return SHA_Final(md, ctx->md_data);
89	}
90
91	static const EVP_MD sha_md = {
92	.type = NID_sha,
93	.pkey_type = NID_shaWithRSAEncryption,
94	.md_size = SHA_DIGEST_LENGTH,
95	.flags = 0,
96	.init = init,
97	.update = update,
98	.final = final,
99	.copy = NULL,
100	.cleanup = NULL,
101	#ifndef OPENSSL_NO_RSA
102	.sign = (evp_sign_method *)RSA_sign,
103	.verify = (evp_verify_method *)RSA_verify,
104	.required_pkey_type = {
105	EVP_PKEY_RSA, EVP_PKEY_RSA2, 0, 0,
106	},
107	#endif
108	.block_size = SHA_CBLOCK,
109	.ctx_size = sizeof(EVP_MD *) + sizeof(SHA_CTX),
110	};
111
112	const EVP_MD *
113	EVP_sha(void)
114	{
115	return (&sha_md);
116	}
117	#endif