diff options
Diffstat (limited to '')
| -rw-r--r-- | src/lib/libssl/ssl_cert.c | 22 |
1 files changed, 13 insertions, 9 deletions
diff --git a/src/lib/libssl/ssl_cert.c b/src/lib/libssl/ssl_cert.c index bfd915d7df..30bb74508d 100644 --- a/src/lib/libssl/ssl_cert.c +++ b/src/lib/libssl/ssl_cert.c | |||
| @@ -1,4 +1,4 @@ | |||
| 1 | /* $OpenBSD: ssl_cert.c,v 1.69 2018/11/08 20:55:18 jsing Exp $ */ | 1 | /* $OpenBSD: ssl_cert.c,v 1.70 2018/11/10 01:19:09 beck Exp $ */ |
| 2 | /* Copyright (C) 1995-1998 Eric Young (eay@cryptsoft.com) | 2 | /* Copyright (C) 1995-1998 Eric Young (eay@cryptsoft.com) |
| 3 | * All rights reserved. | 3 | * All rights reserved. |
| 4 | * | 4 | * |
| @@ -159,14 +159,18 @@ SSL_get_ex_data_X509_STORE_CTX_idx(void) | |||
| 159 | } | 159 | } |
| 160 | 160 | ||
| 161 | static void | 161 | static void |
| 162 | ssl_cert_set_default_md(CERT *cert) | 162 | ssl_cert_set_default_sigalgs(CERT *cert) |
| 163 | { | 163 | { |
| 164 | /* Set digest values to defaults */ | 164 | /* Set digest values to defaults */ |
| 165 | cert->pkeys[SSL_PKEY_RSA_SIGN].digest = EVP_sha1(); | 165 | cert->pkeys[SSL_PKEY_RSA_SIGN].sigalg = |
| 166 | cert->pkeys[SSL_PKEY_RSA_ENC].digest = EVP_sha1(); | 166 | ssl_sigalg_lookup(SIGALG_RSA_PKCS1_SHA1); |
| 167 | cert->pkeys[SSL_PKEY_ECC].digest = EVP_sha1(); | 167 | cert->pkeys[SSL_PKEY_RSA_ENC].sigalg = |
| 168 | ssl_sigalg_lookup(SIGALG_RSA_PKCS1_SHA1); | ||
| 169 | cert->pkeys[SSL_PKEY_ECC].sigalg = | ||
| 170 | ssl_sigalg_lookup(SIGALG_ECDSA_SHA1); | ||
| 168 | #ifndef OPENSSL_NO_GOST | 171 | #ifndef OPENSSL_NO_GOST |
| 169 | cert->pkeys[SSL_PKEY_GOST01].digest = EVP_gostr341194(); | 172 | cert->pkeys[SSL_PKEY_GOST01].sigalg = |
| 173 | ssl_sigalg_lookup(SIGALG_GOSTR01_GOST94); | ||
| 170 | #endif | 174 | #endif |
| 171 | } | 175 | } |
| 172 | 176 | ||
| @@ -182,7 +186,7 @@ ssl_cert_new(void) | |||
| 182 | } | 186 | } |
| 183 | ret->key = &(ret->pkeys[SSL_PKEY_RSA_ENC]); | 187 | ret->key = &(ret->pkeys[SSL_PKEY_RSA_ENC]); |
| 184 | ret->references = 1; | 188 | ret->references = 1; |
| 185 | ssl_cert_set_default_md(ret); | 189 | ssl_cert_set_default_sigalgs(ret); |
| 186 | return (ret); | 190 | return (ret); |
| 187 | } | 191 | } |
| 188 | 192 | ||
| @@ -280,10 +284,10 @@ ssl_cert_dup(CERT *cert) | |||
| 280 | 284 | ||
| 281 | ret->references = 1; | 285 | ret->references = 1; |
| 282 | /* | 286 | /* |
| 283 | * Set digests to defaults. NB: we don't copy existing values | 287 | * Set sigalgs to defaults. NB: we don't copy existing values |
| 284 | * as they will be set during handshake. | 288 | * as they will be set during handshake. |
| 285 | */ | 289 | */ |
| 286 | ssl_cert_set_default_md(ret); | 290 | ssl_cert_set_default_sigalgs(ret); |
| 287 | 291 | ||
| 288 | return (ret); | 292 | return (ret); |
| 289 | 293 | ||