Re: Regarding to disable some signature algorithm in client hello message

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

 

Hi,

SSL_CTX_set1_client_sigalgs_list - is the correct method for this purpose.
Just try for checking return value of this function. On failure it returns 0.
Also try SSL_CTX_set1_client_sigalgs_list (ctx,  "RSA+SHA256");

Thanks,
Murugesh P.


On 6/19/18, Devang Kubavat <devang.kubavat@xxxxxxxxxx> wrote:
> Hi,
>
> I want to disable the SHA1 hash algorithm in Extension: signature algorithm
> client hello message.
>
> [cid:image003.jpg@01D407C3.1A227530]
>
> I have used
>       /* the signature algorithms list */
>       const char signAlgo[] = "RSA+SHA256";
>       (void)SSL_CTX_set1_client_sigalgs_list(ctx, signAlgo);
>
> But, still client is setting all algorithms. Is there any other way to set
> signature algorithm to SSL_CTX or SSL ?
>
>
> Best Regards,
> Devang
>
>
-- 
openssl-users mailing list
To unsubscribe: https://mta.openssl.org/mailman/listinfo/openssl-users
[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

[Index of Archives]     [Linux ARM Kernel]     [Linux ARM]     [Linux Omap]     [Fedora ARM]     [IETF Annouce]     [Security]     [Bugtraq]     [Linux]     [Linux OMAP]     [Linux MIPS]     [ECOS]     [Asterisk Internet PBX]     [Linux API]

  Powered by Linux