diff options
| author | beck <> | 2019-01-24 00:07:58 +0000 |
|---|---|---|
| committer | beck <> | 2019-01-24 00:07:58 +0000 |
| commit | 9e01a2b9fc249398f995e0d00bee55d7e3c31be0 (patch) | |
| tree | 473d2df51bf1efb41163303f552794cfc223bad1 /src/lib | |
| parent | af24f013c3cac19000cba61750502bcbca1ee7ba (diff) | |
| download | openbsd-9e01a2b9fc249398f995e0d00bee55d7e3c31be0.tar.gz openbsd-9e01a2b9fc249398f995e0d00bee55d7e3c31be0.tar.bz2 openbsd-9e01a2b9fc249398f995e0d00bee55d7e3c31be0.zip | |
Remove SHA224 based sigalgs from use in TLS 1.2 as SHA224 is deprecated.
Remove GOST based sigalgs from TLS 1.2 since they don't work with TLS 1.2.
ok jsing@
Diffstat (limited to 'src/lib')
| -rw-r--r-- | src/lib/libssl/ssl_sigalgs.c | 7 |
1 files changed, 1 insertions, 6 deletions
diff --git a/src/lib/libssl/ssl_sigalgs.c b/src/lib/libssl/ssl_sigalgs.c index 76cb441b07..fdea93e1b0 100644 --- a/src/lib/libssl/ssl_sigalgs.c +++ b/src/lib/libssl/ssl_sigalgs.c | |||
| @@ -1,4 +1,4 @@ | |||
| 1 | /* $OpenBSD: ssl_sigalgs.c,v 1.15 2019/01/23 23:47:13 beck Exp $ */ | 1 | /* $OpenBSD: ssl_sigalgs.c,v 1.16 2019/01/24 00:07:58 beck Exp $ */ |
| 2 | /* | 2 | /* |
| 3 | * Copyright (c) 2018-2019 Bob Beck <beck@openbsd.org> | 3 | * Copyright (c) 2018-2019 Bob Beck <beck@openbsd.org> |
| 4 | * | 4 | * |
| @@ -182,17 +182,12 @@ uint16_t tls12_sigalgs[] = { | |||
| 182 | SIGALG_RSA_PSS_RSAE_SHA512, | 182 | SIGALG_RSA_PSS_RSAE_SHA512, |
| 183 | SIGALG_RSA_PKCS1_SHA512, | 183 | SIGALG_RSA_PKCS1_SHA512, |
| 184 | SIGALG_ECDSA_SECP521R1_SHA512, | 184 | SIGALG_ECDSA_SECP521R1_SHA512, |
| 185 | SIGALG_GOSTR12_512_STREEBOG_512, | ||
| 186 | SIGALG_RSA_PSS_RSAE_SHA384, | 185 | SIGALG_RSA_PSS_RSAE_SHA384, |
| 187 | SIGALG_RSA_PKCS1_SHA384, | 186 | SIGALG_RSA_PKCS1_SHA384, |
| 188 | SIGALG_ECDSA_SECP384R1_SHA384, | 187 | SIGALG_ECDSA_SECP384R1_SHA384, |
| 189 | SIGALG_RSA_PSS_RSAE_SHA256, | 188 | SIGALG_RSA_PSS_RSAE_SHA256, |
| 190 | SIGALG_RSA_PKCS1_SHA256, | 189 | SIGALG_RSA_PKCS1_SHA256, |
| 191 | SIGALG_ECDSA_SECP256R1_SHA256, | 190 | SIGALG_ECDSA_SECP256R1_SHA256, |
| 192 | SIGALG_GOSTR12_256_STREEBOG_256, | ||
| 193 | SIGALG_GOSTR01_GOST94, | ||
| 194 | SIGALG_RSA_PKCS1_SHA224, | ||
| 195 | SIGALG_ECDSA_SECP224R1_SHA224, | ||
| 196 | SIGALG_RSA_PKCS1_SHA1, /* XXX */ | 191 | SIGALG_RSA_PKCS1_SHA1, /* XXX */ |
| 197 | SIGALG_ECDSA_SHA1, /* XXX */ | 192 | SIGALG_ECDSA_SHA1, /* XXX */ |
| 198 | }; | 193 | }; |