dh-primes: make the FIPS approved check return Q value

This is necessary for full public key validation in SP800-56A (revision 3), section 5.6.2.3.1. Signed-off-by: Daiki Ueno <ueno@gnu.org>
author: Daiki Ueno <ueno@gnu.org> 2020-07-17 17:45:17 +0200
committer: Daiki Ueno <ueno@gnu.org> 2020-08-31 08:13:45 +0200
commit: 5f7b4eb7e8d4d1f8a2fc76fa2b89590958f8187b (patch)
tree: f4cf1fa5827d3bfd9caada3b08e50826a0abff27 /lib/auth/dh_common.c
parent: 2f6cd079cb6b613bf7906af9e7bdff0e5ec80406 (diff)
download: gnutls-5f7b4eb7e8d4d1f8a2fc76fa2b89590958f8187b.tar.gz
1 files changed, 1 insertions, 1 deletions
diff --git a/lib/auth/dh_common.c b/lib/auth/dh_common.c
index 252eea0cb4..fcd696d4d6 100644
--- a/lib/auth/dh_common.c
+++ b/lib/auth/dh_common.c
@@ -259,7 +259,7 @@ _gnutls_proc_dh_common_server_kx(gnutls_session_t session,
 
 #ifdef ENABLE_FIPS140
 	if (gnutls_fips140_mode_enabled() &&
-	    !_gnutls_dh_prime_is_fips_approved(data_p, n_p, data_g, n_g)) {
+	    !_gnutls_dh_prime_match_fips_approved(data_p, n_p, data_g, n_g, NULL, NULL)) {
 		gnutls_assert();
 		return GNUTLS_E_RECEIVED_ILLEGAL_PARAMETER;
 	}
author	Daiki Ueno <ueno@gnu.org>	2020-07-17 17:45:17 +0200
committer	Daiki Ueno <ueno@gnu.org>	2020-08-31 08:13:45 +0200
commit	5f7b4eb7e8d4d1f8a2fc76fa2b89590958f8187b (patch)
tree	f4cf1fa5827d3bfd9caada3b08e50826a0abff27 /lib/auth/dh_common.c
parent	2f6cd079cb6b613bf7906af9e7bdff0e5ec80406 (diff)
download	gnutls-5f7b4eb7e8d4d1f8a2fc76fa2b89590958f8187b.tar.gz