Blame SOURCES/0023-Updates-per-Feedback.patch

7a8c6d
From 43392d48924d6d50ef2712947ddea424e723e171 Mon Sep 17 00:00:00 2001
7a8c6d
From: Trevor Vaughan <tvaughan@onyxpoint.com>
7a8c6d
Date: Tue, 27 Mar 2018 09:28:28 -0400
7a8c6d
Subject: [PATCH 23/25] Updates per Feedback
7a8c6d
7a8c6d
Ref: #89
7a8c6d
---
7a8c6d
 src/scepgen-o.c | 9 +++++----
7a8c6d
 1 file changed, 5 insertions(+), 4 deletions(-)
7a8c6d
7a8c6d
diff --git a/src/scepgen-o.c b/src/scepgen-o.c
7a8c6d
index 07c2b8b..05fc437 100644
7a8c6d
--- a/src/scepgen-o.c
7a8c6d
+++ b/src/scepgen-o.c
7a8c6d
@@ -457,7 +457,7 @@ cm_scepgen_o_cooked(struct cm_store_ca *ca, struct cm_store_entry *entry,
7a8c6d
 			_exit(1);
7a8c6d
 		}
7a8c6d
 
7a8c6d
-		cm_log(1, "SCEP cipher authoritatively set to: '%s'\n", scep_cipher);
7a8c6d
+		cm_log(1, "SCEP cipher set from configuration to: '%s'\n", scep_cipher);
7a8c6d
 	}
7a8c6d
 	else {
7a8c6d
 		cipher = cm_prefs_nocipher;
7a8c6d
@@ -527,11 +527,11 @@ cm_scepgen_o_cooked(struct cm_store_ca *ca, struct cm_store_entry *entry,
7a8c6d
 			digest = cm_prefs_md5;
7a8c6d
 		}
7a8c6d
 		else {
7a8c6d
-			cm_log(1, "Option 'scep_digest' must be one of AES256, AES192, AES128, DES3, or DES. Got '%s'\n", scep_digest);
7a8c6d
+			cm_log(1, "Option 'scep_digest' must be one of SHA512, SHA384, SHA256, SHA1, or MD5. Got '%s'\n", scep_digest);
7a8c6d
 			_exit(1);
7a8c6d
 		}
7a8c6d
 
7a8c6d
-		cm_log(1, "SCEP digest authoritatively set to: '%s'\n", scep_digest);
7a8c6d
+		cm_log(1, "SCEP digest set from configuration to: '%s'\n", scep_digest);
7a8c6d
 	}
7a8c6d
 	else {
7a8c6d
 		pref_digest = cm_prefs_preferred_digest();
7a8c6d
@@ -578,7 +578,8 @@ cm_scepgen_o_cooked(struct cm_store_ca *ca, struct cm_store_entry *entry,
7a8c6d
 			}
7a8c6d
 		}
7a8c6d
 		if (digest == cm_prefs_nodigest) {
7a8c6d
-			/* Per the latest Draft RFC */
7a8c6d
+			/* Per SCEP RFC draft-gutmann-scep-10 - March 1, 2018 */
7a8c6d
+			/* https://www.ietf.org/id/draft-gutmann-scep-10.txt  */
7a8c6d
 			cm_log(1, "Could not determine supported CA capabilities, using SHA256.\n");
7a8c6d
 			digest = cm_prefs_sha256;
7a8c6d
 		}
7a8c6d
-- 
7a8c6d
1.8.3.1
7a8c6d