[LEDE-DEV] [PATCH] openssl: Remove RIPEMD-160 from OpenSSL
Rosen Penev
rosenp at gmail.com
Mon Mar 27 15:26:22 PDT 2017
The commit that removed no-ripemd stated that it was needed for openssh.
However with recent OpenSSH releases (7.4), RIPEMD-160 is run-time disabled.
I've verified this with ssh -vvv making no mention of RIPEMD-160 anywhere.
---
package/libs/openssl/Makefile | 2 +-
1 file changed, 1 insertion(+), 1 deletion(-)
diff --git a/package/libs/openssl/Makefile b/package/libs/openssl/Makefile
index 2543a46..a2d3ce3 100644
--- a/package/libs/openssl/Makefile
+++ b/package/libs/openssl/Makefile
@@ -100,7 +100,7 @@ endef
OPENSSL_NO_CIPHERS:= no-idea no-md2 no-mdc2 no-rc5 no-sha0 no-camellia no-krb5 \
- no-whrlpool no-whirlpool no-seed no-jpake
+ no-whrlpool no-whirlpool no-seed no-jpake no-ripemd
OPENSSL_OPTIONS:= shared no-err no-sse2 no-ssl2 no-ssl2-method no-heartbeats
ifdef CONFIG_OPENSSL_ENGINE_CRYPTO
--
2.9.3
More information about the Lede-dev
mailing list