Project

General

Profile

Bug #7370

Whirlpool Digest Algorithm on 2.3.3 and 2.4

Added by Vladimir Lind over 2 years ago. Updated over 2 years ago.

Status:
Resolved
Priority:
Normal
Assignee:
Category:
Certificates
Target version:
Start date:
03/08/2017
Due date:
% Done:

100%

Estimated time:
Affected Version:
All
Affected Architecture:
All

Description

CA certificate creation fails when using DA: Whirlpool with any key length from 512 to 16384.
No related errors in syslog found.
Tested on SG2440 with 2.3.3-RELEASE (amd64)built on Thu Feb 16 06:59:56 CST 2017 FreeBSD 10.3-RELEASE-p16
and VM with 2.4.0-BETA (amd64) built on Thu Mar 02 16:28:41 CST 2017

Associated revisions

Revision 5ce9bcf5 (diff)
Added by Jim Pingle over 2 years ago

Fix display of openssl errors when working with CA or certificate entries. Found this while looking into ticket #7370

Revision ddfa8daa (diff)
Added by Jim Pingle over 2 years ago

Fix display of openssl errors when working with CA or certificate entries. Found this while looking into ticket #7370

Revision 505c0863 (diff)
Added by Jim Pingle over 2 years ago

Fix display of openssl errors when working with CA or certificate entries. Found this while looking into ticket #7370

Revision 84141846 (diff)
Added by Jim Pingle over 2 years ago

Remove whirlpool from the list of CA/Cert digest algorithms as it does not work properly. OpenSSL claims it's not valid ("unknown signature algorithm"). Fixes #7370
While I'm here, stop needlessly repeating the algo list, it's a global in certs.inc, so use that single copy of the list.

Revision cfc0d396 (diff)
Added by Jim Pingle over 2 years ago

Remove whirlpool from the list of CA/Cert digest algorithms as it does not work properly. OpenSSL claims it's not valid ("unknown signature algorithm"). Fixes #7370
While I'm here, stop needlessly repeating the algo list, it's a global in certs.inc, so use that single copy of the list.

Revision 37f95208 (diff)
Added by Jim Pingle over 2 years ago

Remove whirlpool from the list of CA/Cert digest algorithms as it does not work properly. OpenSSL claims it's not valid ("unknown signature algorithm"). Fixes #7370
While I'm here, stop needlessly repeating the algo list, it's a global in certs.inc, so use that single copy of the list.

History

#1 Updated by Jim Pingle over 2 years ago

  • Status changed from New to Confirmed
  • Assignee changed from Luiz Souza to Jim Pingle
  • Affected Version changed from 2.3.3 to All
  • Affected Architecture set to All

#2 Updated by Jim Pingle over 2 years ago

  • Status changed from Confirmed to Feedback
  • % Done changed from 0 to 100

#3 Updated by Renato Botelho over 2 years ago

  • Status changed from Feedback to Resolved

Works

Also available in: Atom PDF