[openssl-dev] [openssl.org #4496] [PATCH] ssl_cert: use the recommended minimum hash from RFC 5480 for EC
Matt Caswell
matt at openssl.org
Wed Jun 8 10:29:32 UTC 2016
On 08/06/16 11:25, Hubert Kario wrote:
> On Tuesday 07 June 2016 19:22:00 Matt Caswell via RT wrote:
>> On Sat Apr 02 14:05:50 2016, sebastian at breakpoint.cc wrote:
>>> A TLS1.2 connetion with openssl server and gnutls-cli using a
>>> SECP384R1
>>> key ends up with SHA256 as the hash algorithm for signing the key
>>> exchange.
>>> This is because gnutls sends the hash algorithms from weak to strong
>>> and by default client's preference is used.
>>>
>>> gnutls complains about this situation:
>>> |<1>| The hash size used in signature (32) is less than the expected
>>> (48)
>
> it complains, but does it abort connection?
FYI, there is a (long!) discussion on this issue here:
https://github.com/openssl/openssl/pull/1046
Matt
-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 473 bytes
Desc: OpenPGP digital signature
URL: <http://mta.openssl.org/pipermail/openssl-dev/attachments/20160608/5f4a9b1a/attachment.sig>
More information about the openssl-dev
mailing list