openssl/crypto/dsa
Richard Levitte 6eb648941e fix: drop DSA <=> dsaWithSHA1 aliasing
For some reason, DSA has been aliased with dsaWithSHA1 for an eternity.
They are not the same, though, and should never have been aliased in the
first place.

This was first discovered with 'openssl list':

    $ openssl list -signature-algorithms
    ...
    { 1.2.840.10040.4.1, 1.2.840.10040.4.3, 1.3.14.3.2.12, 1.3.14.3.2.13, 1.3.14.3.2.27, DSA, DSA-old, DSA-SHA, DSA-SHA1, DSA-SHA1-old, dsaEncryption, dsaEncryption-old, dsaWithSHA, dsaWithSHA1, dsaWithSHA1-old } @ default

This isn't good at all, as it confuses the key algorithms signature
function with a signature scheme that involves SHA1, and it makes it
look like OpenSSL's providers offer a DSA-SHA1 implementation (which
they currently do not do).

Breaking this aliasing apart (i.e. aliasing DSA, DSA-old, dsaEncryption
and dsaEncryption-old separately from the names that involve SHA) appears
harmless as far as OpenSSL's test suite goes.

Reviewed-by: Kurt Roeckx <kurt@roeckx.be>
Reviewed-by: Tomas Mraz <tomas@openssl.org>
(Merged from https://github.com/openssl/openssl/pull/24828)
2024-07-12 11:20:23 +02:00
..
build.info
dsa_ameth.c fix: drop DSA <=> dsaWithSHA1 aliasing 2024-07-12 11:20:23 +02:00
dsa_asn1.c
dsa_backend.c
dsa_check.c Check DSA parameters for excessive sizes before validating 2024-05-16 15:44:40 +02:00
dsa_depr.c
dsa_err.c
dsa_gen.c
dsa_key.c
dsa_lib.c
dsa_local.h
dsa_meth.c
dsa_ossl.c Rename BN_generate_dsa_nonce() to ossl_bn_gen_dsa_nonce_fixed_top() 2024-05-02 09:21:30 +02:00
dsa_pmeth.c
dsa_prn.c
dsa_sign.c
dsa_vrf.c