diff options
| author | Jarek Prokop <jprokop@redhat.com> | 2022-04-12 09:44:37 +0200 |
|---|---|---|
| committer | Nobuyoshi Nakada <nobu@ruby-lang.org> | 2022-07-08 23:18:22 +0900 |
| commit | 4d6a29320dcd758c21944983da28b54037c200da (patch) | |
| tree | bd327b91e81bbb1e7d08c4c5e4af207d620cff0e | |
| parent | 7a5a90e05351262593ca6e4c1c6b8e797d8ab9c9 (diff) | |
[ruby/openssl] Let OpenSSL choose the digest if digest for Openssl::OCSP::BasicResponse#sign is nil.
https://github.com/ruby/openssl/commit/27efcd7e1c
| -rw-r--r-- | ext/openssl/ossl_ocsp.c | 2 | ||||
| -rw-r--r-- | test/openssl/test_ocsp.rb | 2 |
2 files changed, 2 insertions, 2 deletions
diff --git a/ext/openssl/ossl_ocsp.c b/ext/openssl/ossl_ocsp.c index 543df2715e..9c8d768d87 100644 --- a/ext/openssl/ossl_ocsp.c +++ b/ext/openssl/ossl_ocsp.c @@ -1033,7 +1033,7 @@ ossl_ocspbres_sign(int argc, VALUE *argv, VALUE self) if (!NIL_P(flags)) flg = NUM2INT(flags); if (NIL_P(digest)) - md = EVP_sha1(); + md = NULL; else md = ossl_evp_get_digestbyname(digest); if (NIL_P(certs)) diff --git a/test/openssl/test_ocsp.rb b/test/openssl/test_ocsp.rb index ef7321abd6..85f133752c 100644 --- a/test/openssl/test_ocsp.rb +++ b/test/openssl/test_ocsp.rb @@ -99,7 +99,7 @@ class OpenSSL::TestOCSP < OpenSSL::TestCase request.sign(@cert, @cert_key, [@ca_cert], 0) asn1 = OpenSSL::ASN1.decode(request.to_der) assert_equal cid.to_der, asn1.value[0].value.find { |a| a.tag_class == :UNIVERSAL }.value[0].value[0].to_der - assert_equal OpenSSL::ASN1.ObjectId("sha1WithRSAEncryption").to_der, asn1.value[1].value[0].value[0].value[0].to_der + assert_equal OpenSSL::ASN1.ObjectId("sha256WithRSAEncryption").to_der, asn1.value[1].value[0].value[0].value[0].to_der assert_equal @cert.to_der, asn1.value[1].value[0].value[2].value[0].value[0].to_der assert_equal @ca_cert.to_der, asn1.value[1].value[0].value[2].value[0].value[1].to_der assert_equal asn1.to_der, OpenSSL::OCSP::Request.new(asn1.to_der).to_der |