Hello, This patch https://github.com/openssl/openssl/pull/771 adds support for ESSCertIDv2 to ts module as defined in RFC5816 (Update for RFC 3161), thus it removes another hardcoded SHA-1 usage from ts module.
It is possible to choose the hash algorithm that is used to calculate certificate id by setting .conf variable "ess_cert_id_v2_alg". By setting "ess_cert_id_v2" variable it is possible to decide whether ESSCertIDv2 should be used instead of original ESSCertID. Original behavior (using ESSCertID) is preserved. Kind Regards / S pozdravom Marek Klein Disig, a.s. Zahradnicka 151, 821 08 Bratislava 2 <mailto:[email protected]> [email protected] <http://www.disig.sk> www.disig.sk -- Ticket here: http://rt.openssl.org/Ticket/Display.html?id=4368 Please log in as guest with password guest if prompted
smime.p7s
Description: S/MIME cryptographic signature
-- openssl-dev mailing list To unsubscribe: https://mta.openssl.org/mailman/listinfo/openssl-dev
