diff options
author | Daiki Ueno <ueno@unixuser.org> | 2009-08-31 14:40:38 +0900 |
---|---|---|
committer | Simon Josefsson <simon@josefsson.org> | 2009-08-31 14:59:47 +0200 |
commit | 56d2607e547ac4c4eba24fd8ccbd00ffd494d64d (patch) | |
tree | 7c37bd164d7b2cf46244383a09c4d4b4b32aceae /lib/auth_rsa_export.c | |
parent | cfb62003ad5e4900d222261674fdd2c770f6db25 (diff) | |
download | gnutls-56d2607e547ac4c4eba24fd8ccbd00ffd494d64d.tar.gz |
Respect TLS signature algorithm in server KX.
Verify signature of DH parameters in Server Key Exchange with the
embedded signature algorithm.
Signed-off-by: Simon Josefsson <simon@josefsson.org>
Diffstat (limited to 'lib/auth_rsa_export.c')
-rw-r--r-- | lib/auth_rsa_export.c | 3 |
1 files changed, 2 insertions, 1 deletions
diff --git a/lib/auth_rsa_export.c b/lib/auth_rsa_export.c index 606f85c468..638395b128 100644 --- a/lib/auth_rsa_export.c +++ b/lib/auth_rsa_export.c @@ -308,7 +308,8 @@ proc_rsa_export_server_kx (gnutls_session_t session, return ret; } - ret = _gnutls_verify_sig_params (session, &peer_cert, &vparams, &signature); + ret = _gnutls_verify_sig_params (session, &peer_cert, &vparams, &signature, + GNUTLS_SIGN_UNKNOWN); _gnutls_gcert_deinit (&peer_cert); if (ret < 0) |