Remove pointless MD5 hash.

author Ben Laurie <ben@openssl.org>

Sun, 17 Jan 1999 14:14:41 +0000 (14:14 +0000)

committer Ben Laurie <ben@openssl.org>

Sun, 17 Jan 1999 14:14:41 +0000 (14:14 +0000)
author Ben Laurie <ben@openssl.org>
Sun, 17 Jan 1999 14:14:41 +0000 (14:14 +0000)
committer Ben Laurie <ben@openssl.org>
Sun, 17 Jan 1999 14:14:41 +0000 (14:14 +0000)
diff --git a/CHANGES b/CHANGES

index c3f7f1890bc698fd305d78a3b13214649301ab24..d117eb6314100b966590bf9bad274a695cab1cfa 100644 (file)
--- a/CHANGES
+++ b/CHANGES
@@ -5,6 +5,9 @@
  
   Changes between 0.9.1c and 0.9.2
  
+  *) Remove pointless MD5 hash when using DSA keys in ca.
+     [Anonymous <nobody@replay.com>]
+
    *) Generate an error if given an empty string as a cert directory. Also
       generate an error if handed NULL (previously returned 0 to indicate an
       error, but didn't set one).
diff --git a/apps/ca.c b/apps/ca.c

index 7a142853973d5fe99cc0a0be786b911af8868373..1ea90aa96a1477aafa56a69d3c13f8399982fffa 100644 (file)
--- a/apps/ca.c
+++ b/apps/ca.c
@@ -1023,11 +1023,15 @@ bad:
                                 }
                         }
                 else
-                       dgst=EVP_md5();
+                   {
  #ifndef NO_DSA
-               if (pkey->type == EVP_PKEY_DSA) 
-                   dgst = EVP_dss1() ;
+                   if (pkey->type == EVP_PKEY_DSA) 
+                       dgst=EVP_dss1();
+                   else
  #endif
+                       dgst=EVP_md5();
+                   }
+
                 if (!X509_CRL_sign(crl,pkey,dgst)) goto err;
  
                 PEM_write_bio_X509_CRL(Sout,crl);
author	Ben Laurie <ben@openssl.org>
	Sun, 17 Jan 1999 14:14:41 +0000 (14:14 +0000)
committer	Ben Laurie <ben@openssl.org>
	Sun, 17 Jan 1999 14:14:41 +0000 (14:14 +0000)
CHANGES		patch \| blob \| history
apps/ca.c		patch \| blob \| history