On Fri, Aug 12, 2011, Dave Thompson wrote: > > 1.0.0 allows any cert sig alg whose name includes "WithRSA". > > Adjacent in the code, 1.0.0 like 0.9.8 allows kECDH*e* only for cert > signed ECDSA+SHA1, though 1.0.0 otherwise handles ECDSA+SHA2family. > That probably needs a similar upgrade. >
Should be fixed by this: http://cvs.openssl.org/chngview?cn=21247 Steve. -- Dr Stephen N. Henson. OpenSSL project core developer. Commercial tech support now available see: http://www.openssl.org ______________________________________________________________________ OpenSSL Project http://www.openssl.org User Support Mailing List [email protected] Automated List Manager [email protected]
