Current status of --enable-crypto

Matthew Selsky Matthew.Selsky at twosigma.com
Sat Jan 28 01:05:14 UTC 2017


On Fri, Jan 27, 2017 at 03:57:36PM -0500, Daniel Franke wrote:
> On 1/27/17, Eric S. Raymond <esr at thyrsus.com> wrote:
> > Daniel Franke <dfoxfranke at gmail.com>:
> >> Where is this notion coming from that OpenSSL is going to drop MD5 or
> >> SHA1
> >> support any time soon? That's inconceivable to me.
> >
> > I think it was either Achim Gratz or Kurt Roecx (I can't easily search to
> > find
> > out right now). Somebody serious, anyway.
> 
> I just checked with an OpenSSL dev to make certain: dropping MD5 and
> SHA1 from libcrypto is not even remotely under consideration.

LibreSSL dropped support for SHA-0 in 2.4.2, and that breaks the build on OpenBSD 6.0

Where do we get SHA-0, aka "sha", keytype support from if we remove the in-tree public domain version?


Thanks,
-Matt


More information about the devel mailing list