diff options
Diffstat (limited to 'lib/ext')
-rw-r--r-- | lib/ext/signature.c | 7 | ||||
-rw-r--r-- | lib/ext/signature.h | 2 |
2 files changed, 5 insertions, 4 deletions
diff --git a/lib/ext/signature.c b/lib/ext/signature.c index 29a208e367..e11f4649a6 100644 --- a/lib/ext/signature.c +++ b/lib/ext/signature.c @@ -258,7 +258,7 @@ _gnutls_signature_algorithm_send_params(gnutls_session_t session, */ gnutls_sign_algorithm_t _gnutls_session_get_sign_algo(gnutls_session_t session, - gnutls_pcert_st * cert) + gnutls_pcert_st * cert, unsigned our_cert) { unsigned i; int ret; @@ -283,7 +283,8 @@ _gnutls_session_get_sign_algo(gnutls_session_t session, /* none set, allow SHA-1 only */ { ret = gnutls_pk_to_sign(cert_algo, GNUTLS_DIG_SHA1); - if (_gnutls_session_sign_algo_enabled(session, ret) < 0) + + if (!our_cert && _gnutls_session_sign_algo_enabled(session, ret) < 0) goto fail; return ret; } @@ -296,7 +297,7 @@ _gnutls_session_get_sign_algo(gnutls_session_t session, priv->sign_algorithms[i]) < 0) continue; - if (_gnutls_session_sign_algo_enabled + if (!our_cert && _gnutls_session_sign_algo_enabled (session, priv->sign_algorithms[i]) < 0) continue; diff --git a/lib/ext/signature.h b/lib/ext/signature.h index 2130aa2a6b..8309d1f10d 100644 --- a/lib/ext/signature.h +++ b/lib/ext/signature.h @@ -31,7 +31,7 @@ extern const extension_entry_st ext_mod_sig; gnutls_sign_algorithm_t _gnutls_session_get_sign_algo(gnutls_session_t session, - gnutls_pcert_st * cert); + gnutls_pcert_st * cert, unsigned our_cert); int _gnutls_sign_algorithm_parse_data(gnutls_session_t session, const uint8_t * data, size_t data_size); |