From b9f54dcff835a929598c2b647b76a1c5a0fb5906 Mon Sep 17 00:00:00 2001
From: "Alfred E. Heggestad" <alfred.heggestad@gmail.com>
Date: Fri, 16 Sep 2022 17:47:55 +0200
Subject: [PATCH] tls: remove SHA1 fingerprint (deprecated)

---
 include/re_tls.h      | 1 -
 src/tls/openssl/tls.c | 7 -------
 2 files changed, 8 deletions(-)

diff --git a/include/re_tls.h b/include/re_tls.h
index 59baf162f..d14c92420 100644
--- a/include/re_tls.h
+++ b/include/re_tls.h
@@ -30,7 +30,6 @@ enum tls_method {
 };
 
 enum tls_fingerprint {
-	TLS_FINGERPRINT_SHA1,
 	TLS_FINGERPRINT_SHA256,
 };
 
diff --git a/src/tls/openssl/tls.c b/src/tls/openssl/tls.c
index f6f0eba40..317abffa1 100644
--- a/src/tls/openssl/tls.c
+++ b/src/tls/openssl/tls.c
@@ -979,13 +979,6 @@ static int cert_fingerprint(X509 *cert, enum tls_fingerprint type,
 
 	switch (type) {
 
-	case TLS_FINGERPRINT_SHA1:
-		if (size < 20)
-			return EOVERFLOW;
-
-		n = X509_digest(cert, EVP_sha1(), md, &len);
-		break;
-
 	case TLS_FINGERPRINT_SHA256:
 		if (size < 32)
 			return EOVERFLOW;