commit 659806d7ff6ac530946673bf564702d5d160558a
author Brian Smith <brian@briansmith.org> Thu Sep 10 16:28:11 2015 -0700
committer Adam Langley <alangley@gmail.com> Mon Oct 26 21:26:51 2015 +0000
tree bc01e2ec8bb2b6d5e591a9cb7af46369725ea5ec
parent e564a5ba6e68c2eed56df2701ba3dd7a662be3ca

Don't default to SHA-1 in |EVP_DigestSignInit|/|EVP_DigestVerifyInit|.

This removes a hard link-time dependency on the SHA-1 code. The code
was self-contradictory in whether it defaulted to SHA-1 or refused to
default to SHA-1.

Change-Id: I5ad7949bdd529df568904f87870313e3d8a57e72
Reviewed-on: https://boringssl-review.googlesource.com/5833
Reviewed-by: Adam Langley <alangley@gmail.com>

crypto/evp/digestsign.c

diff --git a/crypto/evp/digestsign.c b/crypto/evp/digestsign.c
index ccb4de4..69c483a 100644
--- a/crypto/evp/digestsign.c
+++ b/crypto/evp/digestsign.c
@@ -55,7 +55,6 @@
 
 #include <openssl/evp.h>
 
-#include <openssl/digest.h>
 #include <openssl/err.h>
 
 #include "internal.h"
@@ -79,10 +78,6 @@
   ctx->pctx_ops = &md_pctx_ops;
 
   if (type == NULL) {
-    type = EVP_sha1();
-  }
-
-  if (type == NULL) {
     OPENSSL_PUT_ERROR(EVP, EVP_R_NO_DEFAULT_DIGEST);
     return 0;
   }