diff options
author | jim-p <jimp@pfsense.org> | 2017-03-08 10:03:19 -0500 |
---|---|---|
committer | jim-p <jimp@pfsense.org> | 2017-03-08 10:05:24 -0500 |
commit | 37f952082d903edd6786d0d7aee956617d12c95e (patch) | |
tree | b0077dfce5c69c07c521263581904737d02cc8fb /src/usr | |
parent | 505c08631efd901112203bb735394025a222c639 (diff) | |
download | pfsense-37f952082d903edd6786d0d7aee956617d12c95e.zip pfsense-37f952082d903edd6786d0d7aee956617d12c95e.tar.gz |
Remove whirlpool from the list of CA/Cert digest algorithms as it does not work properly. OpenSSL claims it's not valid ("unknown signature algorithm"). Fixes #7370
While I'm here, stop needlessly repeating the algo list, it's a global in certs.inc, so use that single copy of the list.
Diffstat (limited to 'src/usr')
-rw-r--r-- | src/usr/local/www/system_camanager.php | 2 | ||||
-rw-r--r-- | src/usr/local/www/system_certmanager.php | 2 |
2 files changed, 2 insertions, 2 deletions
diff --git a/src/usr/local/www/system_camanager.php b/src/usr/local/www/system_camanager.php index 28d2fa5..5c16a32 100644 --- a/src/usr/local/www/system_camanager.php +++ b/src/usr/local/www/system_camanager.php @@ -68,7 +68,7 @@ $ca_methods = array( "intermediate" => gettext("Create an intermediate Certificate Authority")); $ca_keylens = array("512", "1024", "2048", "3072", "4096", "7680", "8192", "15360", "16384"); -$openssl_digest_algs = array("sha1", "sha224", "sha256", "sha384", "sha512", "whirlpool"); +global $openssl_digest_algs; if (is_numericint($_GET['id'])) { $id = $_GET['id']; diff --git a/src/usr/local/www/system_certmanager.php b/src/usr/local/www/system_certmanager.php index d6684ef..538d7c0 100644 --- a/src/usr/local/www/system_certmanager.php +++ b/src/usr/local/www/system_certmanager.php @@ -74,7 +74,7 @@ $cert_types = array( "user" => "User Certificate"); $altname_types = array("DNS", "IP", "email", "URI"); -$openssl_digest_algs = array("sha1", "sha224", "sha256", "sha384", "sha512", "whirlpool"); +global $openssl_digest_algs; if (is_numericint($_GET['userid'])) { $userid = $_GET['userid']; |