tests in ssl-opts are too dependent on SHA1 #2008
Labels
component-tls
enhancement
good-first-issue
Good for newcomers
help-wanted
This issue is not being actively worked on, but PRs welcome.
historical-reviewed
Reviewed & agreed to keep legacy PR/issue
size-m
Estimated task size: medium (~1w)
Description
Tests in the ssl-opts.sh are dependent on Sha1, as the CA file used is hashed with SHA1.
Need to change the certificates used in the test to SHA256 based, unless these are explicitly testing SHA1.
Enhancement\Feature Request
Justification - why does the library need this feature?
SHA1 has been breached, and should not be used by default
Suggested enhancement
Replace all the certificates used in ssl-opts.sh and remove the default
allow_sha1=1
The text was updated successfully, but these errors were encountered: