generic-library/openssl
1
0
Fork 0
Code Issues Pull Requests Releases Wiki Activity

use SHA-1 as the default digest for the apps/openssl commands

Browse Source
This commit is contained in:
Nils Larsch
2005-04-02 09:29:15 +00:00
parent 7bdf8eed69
commit 12bdb64375
6 changed files with 11 additions and 7 deletions
Download Patch File Download Diff File Expand all files Collapse all files

6
CHANGES
View File

@@ -2,7 +2,11 @@
OpenSSL CHANGES OpenSSL CHANGES
_______________ _______________
Changes between 0.9.7e and 0.9.8 [xx XXX xxxx] Changes between 0.9.7f and 0.9.8 [xx XXX xxxx]
*) Use SHA-1 instead of MD5 as the default digest algorithm for
the apps/openssl applications.
[Nils Larsch]
*) Compile clean with "-Wall -Wmissing-prototypes *) Compile clean with "-Wall -Wmissing-prototypes
-Wstrict-prototypes -Wmissing-declarations -Werror". Currently -Wstrict-prototypes -Wmissing-declarations -Werror". Currently

2
apps/crl.c
View File

@@ -115,7 +115,7 @@ int MAIN(int argc, char **argv)
X509_OBJECT xobj; X509_OBJECT xobj;
EVP_PKEY *pkey; EVP_PKEY *pkey;
int do_ver = 0; int do_ver = 0;
const EVP_MD *md_alg,*digest=EVP_md5(); const EVP_MD *md_alg,*digest=EVP_sha1();
apps_startup(); apps_startup();

2
apps/openssl.cnf
View File

@@ -67,7 +67,7 @@ cert_opt = ca_default # Certificate field options
default_days = 365 # how long to certify for default_days = 365 # how long to certify for
default_crl_days= 30 # how long before next CRL default_crl_days= 30 # how long before next CRL
default_md = md5 # which md to use. default_md = sha1 # which md to use.
preserve = no # keep passed DN ordering preserve = no # keep passed DN ordering
# A few difference way of specifying how similar the request should look # A few difference way of specifying how similar the request should look

2
apps/req.c
View File

@@ -187,7 +187,7 @@ int MAIN(int argc, char **argv)
char *p; char *p;
char *subj = NULL; char *subj = NULL;
int multirdn = 0; int multirdn = 0;
const EVP_MD *md_alg=NULL,*digest=EVP_md5(); const EVP_MD *md_alg=NULL,*digest=EVP_sha1();
unsigned long chtype = MBSTRING_ASC; unsigned long chtype = MBSTRING_ASC;
#ifndef MONOLITH #ifndef MONOLITH
char *to_free; char *to_free;

2
apps/x509.c
View File

@@ -184,7 +184,7 @@ int MAIN(int argc, char **argv)
X509_REQ *rq=NULL; X509_REQ *rq=NULL;
int fingerprint=0; int fingerprint=0;
char buf[256]; char buf[256];
const EVP_MD *md_alg,*digest=EVP_md5(); const EVP_MD *md_alg,*digest=EVP_sha1();
CONF *extconf = NULL; CONF *extconf = NULL;
char *extsect = NULL, *extfile = NULL, *passin = NULL, *passargin = NULL; char *extsect = NULL, *extfile = NULL, *passin = NULL, *passargin = NULL;
int need_rand = 0; int need_rand = 0;

4
doc/apps/x509.pod
View File

@@ -98,8 +98,8 @@ default.
the digest to use. This affects any signing or display option that uses a message the digest to use. This affects any signing or display option that uses a message
digest, such as the B<-fingerprint>, B<-signkey> and B<-CA> options. If not digest, such as the B<-fingerprint>, B<-signkey> and B<-CA> options. If not
specified then MD5 is used. If the key being used to sign with is a DSA key then specified then SHA1 is used. If the key being used to sign with is a DSA key
this option has no effect: SHA1 is always used with DSA keys. then this option has no effect: SHA1 is always used with DSA keys.
=item B<-engine id> =item B<-engine id>