mk-ca-bundle: added SHA-384 signature algorithm

Certificates based on SHA-1 are being phased out[1]. So we should expect a rise in certificates based on SHA-2. Adding SHA-384 as a valid signature algorithm. [1] https://blog.mozilla.org/security/2014/09/23/phasing-out-certificates-with-sha-1-based-signature-algorithms/ Signed-off-by: Bruno Thomsen <bth@kamstrup.dk>
2014-10-15 12:48:27 +02:00
parent e64bc7cde6
commit 3621045631
2 changed files with 3 additions and 2 deletions
--- a/lib/mk-ca-bundle.pl
+++ b/lib/mk-ca-bundle.pl
@@ -56,7 +56,7 @@ $opt_d = 'release';
 # If the OpenSSL commandline is not in search path you can configure it here!
 my $openssl = 'openssl';

-my $version = '1.23';
+my $version = '1.24';

 $opt_w = 76; # default base64 encoded lines length

@@ -97,6 +97,7 @@ my @valid_signature_algorithms = (
  "MD5",
  "SHA1",
  "SHA256",
+  "SHA384",
  "SHA512"
 );