Fixed now, thanks for the report.
Steve.
--
Dr Stephen N. Henson. OpenSSL project core developer.
Commercial tech support now available see: http://www.openssl.org
__
OpenSSL Project
When connecting to a virtual, SNI defined host openssl selects SHA1
digest instead of SHA512, as it does for the default host.
Steps to Reproduce:
1. openssl req -x509 -newkey rsa:2048 -keyout localhost.key -out localhost.crt
-subj /CN=localhost -nodes -batch
2. openssl req -x509 -newkey
On Wed Oct 08 19:12:41 2014, tm...@redhat.com wrote:
When connecting to a virtual, SNI defined host openssl selects SHA1
digest instead of SHA512, as it does for the default host.
The cause is that some negotiated parameters are wiped when SSL_set_SSL_CTX is
called. Try the attached patch.