Mercurial > dropbear
diff crypto_desc.c @ 1916:3f4cdf839a1a
Make SHA1 optional, implement SHA256 fingerprints
SHA256 is always compiled and only enable SHA1 when needed. Fingerprints
are always SHA256: base64 format, md5 and sha1 are removed. dbrandom now
uses sha256 its hash function.
author | Matt Johnston <matt@ucc.asn.au> |
---|---|
date | Wed, 30 Mar 2022 11:44:04 +0800 |
parents | 13cb8cc1b0e4 |
children |
line wrap: on
line diff
--- a/crypto_desc.c Wed Mar 30 10:23:39 2022 +0800 +++ b/crypto_desc.c Wed Mar 30 11:44:04 2022 +0800 @@ -31,8 +31,9 @@ }; const struct ltc_hash_descriptor *reghashes[] = { - /* we need sha1 for hostkey stuff regardless */ +#if DROPBEAR_SHA1_HMAC &sha1_desc, +#endif #if DROPBEAR_MD5_HMAC &md5_desc, #endif @@ -46,9 +47,9 @@ &sha512_desc, #endif NULL - }; + }; int i; - + for (i = 0; regciphers[i] != NULL; i++) { if (register_cipher(regciphers[i]) == -1) { dropbear_exit("Error registering crypto");