Gitiles
Code Review Sign In
git01.mediatek.com / haproxy / 7969a33a01c3a70e48cddf36ea5a66710bd7a995
commit7969a33a01c3a70e48cddf36ea5a66710bd7a995[log] [tgz]
authorChristopher Faulet <cfaulet@qualys.com>Fri Oct 09 11:15:03 2015 +0200
committerWilly Tarreau <w@1wt.eu>Fri Oct 09 12:13:12 2015 +0200
treedca0712b348fd22f74743964badfb87801541a05
parentc6f02fb929f175e4fbd164bf3573ca420316903e [diff]
MINOR: ssl: Add support for EC for the CA used to sign generated certificates

This is done by adding EVP_PKEY_EC type in supported types for the CA private
key when we get the message digest used to sign a generated X509 certificate.
So now, we support DSA, RSA and EC private keys.

And to be sure, when the type of the private key is not directly supported, we
get its default message digest using the function
'EVP_PKEY_get_default_digest_nid'.

We also use the key of the default certificate instead of generated it. So we
are sure to use the same key type instead of always using a RSA key.
2 files changed
tree: dca0712b348fd22f74743964badfb87801541a05
  1. contrib/
  2. doc/
  3. ebtree/
  4. examples/
  5. include/
  6. src/
  7. tests/
  8. .gitignore
  9. CHANGELOG
  10. CONTRIBUTING
  11. LICENSE
  12. MAINTAINERS
  13. Makefile
  14. README
  15. ROADMAP
  16. SUBVERS
  17. VERDATE
  18. VERSION