DSA+SHA1 is actually a supported algorithm

kares · kares · commit 342042f18f8a · 2017-01-23T14:25:29.000+01:00
diff --git a/src/main/java/org/jruby/ext/openssl/PKey.java b/src/main/java/org/jruby/ext/openssl/PKey.java
@@ -414,14 +414,12 @@ static void supportedSignatureAlgorithm(final Ruby runtime, final RubyClass erro
         final String keyAlg = key.getAlgorithm();
         final String digAlg = digest.getShortAlgorithm();
         if ( ( "DSA".equalsIgnoreCase(keyAlg) && "MD5".equalsIgnoreCase(digAlg)) ||
-             ( "RSA".equalsIgnoreCase(keyAlg) && "DSS1".equals( digest.name().toString() ) ) ||
-             ( "DSA".equalsIgnoreCase(keyAlg) && "SHA1".equals( digest.name().toString() ) ) ) {
-            throw Utils.newError(runtime, errorClass, "unsupported key / digest algorithm ( "+ key +" / "+ digAlg +" )");
+             ( "RSA".equalsIgnoreCase(keyAlg) && "DSS1".equals( digest.name().toString() ) ) ) {
+            throw Utils.newError(runtime, errorClass, "unsupported key / digest algorithm ( "+ keyAlg +" / "+ digAlg +" )");
         }
     }
 
-    static void supportedSignatureAlgorithm(final Ruby runtime,
-        final PKey key, final Digest digest) {
+    static void supportedSignatureAlgorithm(final Ruby runtime, final PKey key, final Digest digest) {
         supportedSignatureAlgorithm(runtime, _OpenSSLError(runtime), key, digest);
     }
 

Original file line number	Diff line number	Diff line change
`@@ -414,14 +414,12 @@ static void supportedSignatureAlgorithm(final Ruby runtime, final RubyClass erro`
`414`	`414`	`final String keyAlg = key.getAlgorithm();`
`415`	`415`	`final String digAlg = digest.getShortAlgorithm();`
`416`	`416`	`if ( ( "DSA".equalsIgnoreCase(keyAlg) && "MD5".equalsIgnoreCase(digAlg)) \|\|`
`417`		`- ( "RSA".equalsIgnoreCase(keyAlg) && "DSS1".equals( digest.name().toString() ) ) \|\|`
`418`		`- ( "DSA".equalsIgnoreCase(keyAlg) && "SHA1".equals( digest.name().toString() ) ) ) {`
`419`		`- throw Utils.newError(runtime, errorClass, "unsupported key / digest algorithm ( "+ key +" / "+ digAlg +" )");`
	`417`	`+ ( "RSA".equalsIgnoreCase(keyAlg) && "DSS1".equals( digest.name().toString() ) ) ) {`
	`418`	`+ throw Utils.newError(runtime, errorClass, "unsupported key / digest algorithm ( "+ keyAlg +" / "+ digAlg +" )");`
`420`	`419`	`}`
`421`	`420`	`}`
`422`	`421`
`423`		`- static void supportedSignatureAlgorithm(final Ruby runtime,`
`424`		`- final PKey key, final Digest digest) {`
	`422`	`+ static void supportedSignatureAlgorithm(final Ruby runtime, final PKey key, final Digest digest) {`
`425`	`423`	`supportedSignatureAlgorithm(runtime, _OpenSSLError(runtime), key, digest);`
`426`	`424`	`}`
`427`	`425`