projects / openwrt / openwrt.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: ff414fb) | patch
mbedtls: Re-allow SHA1-signed certificates
authorBaptiste Jonglez <git@bitsofnetworks.org>
Sun, 30 Jul 2017 15:57:37 +0000 (17:57 +0200)
committerHauke Mehrtens <hauke@hauke-m.de>
Fri, 11 Aug 2017 18:45:28 +0000 (20:45 +0200)
commit3e35eb13ada3b87e87cd108f9d459b9484446e9c
treec330f5183115c887bab82d331819f399587fe7c7tree | snapshot
parentff414fb575a43ada264186fe74e57fb605f20b7fcommit | diff
mbedtls: Re-allow SHA1-signed certificates

Since mbedtls 2.5.1, SHA1 has been disallowed in TLS certificates.
This breaks openvpn clients that try to connect to servers that
present a TLS certificate signed with SHA1, which is fairly common.

Run-tested with openvpn-mbedtls 2.4.3, LEDE 17.01.2, on ar71xx.

Fixes: FS#942
Signed-off-by: Baptiste Jonglez <git@bitsofnetworks.org>
package/libs/mbedtls/Makefile diff | blob | history
package/libs/mbedtls/patches/200-config.patch diff | blob | history
OpenWrt Source Repository