The SHA256 is not a mandatory digest for DSA. (871c675b) · Commits · CYBER - Cyber Security / TS 103 523 MSP / ETS / ETS OpenSSL

Commit 871c675b authored May 27, 2019 by

Tomas Mraz

The SHA256 is not a mandatory digest for DSA.



The #7408 implemented mandatory digest checking in TLS.
However this broke compatibility of DSS support with GnuTLS
which supports only SHA1 with DSS.

There is no reason why SHA256 would be a mandatory digest
for DSA as other digests in SHA family can be used as well.

Reviewed-by: Paul Dale <paul.dale@oracle.com>
(Merged from https://github.com/openssl/openssl/pull/9015)

(cherry picked from commit cd4c83b52423008391b50abcccf18a7d8fcce03b)

parent b29cd8b5

Hide whitespace changes

Inline Side-by-side

Please register or to comment