diff options
author | Daiki Ueno <ueno@gnu.org> | 2020-07-17 17:45:17 +0200 |
---|---|---|
committer | Daiki Ueno <ueno@gnu.org> | 2020-08-31 08:13:45 +0200 |
commit | 5f7b4eb7e8d4d1f8a2fc76fa2b89590958f8187b (patch) | |
tree | f4cf1fa5827d3bfd9caada3b08e50826a0abff27 /lib/auth/dh_common.c | |
parent | 2f6cd079cb6b613bf7906af9e7bdff0e5ec80406 (diff) | |
download | gnutls-5f7b4eb7e8d4d1f8a2fc76fa2b89590958f8187b.tar.gz |
dh-primes: make the FIPS approved check return Q value
This is necessary for full public key validation in
SP800-56A (revision 3), section 5.6.2.3.1.
Signed-off-by: Daiki Ueno <ueno@gnu.org>
Diffstat (limited to 'lib/auth/dh_common.c')
-rw-r--r-- | lib/auth/dh_common.c | 2 |
1 files changed, 1 insertions, 1 deletions
diff --git a/lib/auth/dh_common.c b/lib/auth/dh_common.c index 252eea0cb4..fcd696d4d6 100644 --- a/lib/auth/dh_common.c +++ b/lib/auth/dh_common.c @@ -259,7 +259,7 @@ _gnutls_proc_dh_common_server_kx(gnutls_session_t session, #ifdef ENABLE_FIPS140 if (gnutls_fips140_mode_enabled() && - !_gnutls_dh_prime_is_fips_approved(data_p, n_p, data_g, n_g)) { + !_gnutls_dh_prime_match_fips_approved(data_p, n_p, data_g, n_g, NULL, NULL)) { gnutls_assert(); return GNUTLS_E_RECEIVED_ILLEGAL_PARAMETER; } |