From 1b89604daff0653e47e9bf8937674928a29309ba Mon Sep 17 00:00:00 2001
From: Nikos Mavrogiannopoulos <nmav@gnutls.org>
Date: Fri, 17 Aug 2012 15:15:08 +0200
Subject: When selecting a session signature algorithm consider the enabled.

---
 lib/ext/signature.c | 3 +++
 1 file changed, 3 insertions(+)

diff --git a/lib/ext/signature.c b/lib/ext/signature.c
index 1da555e992..d52091ad2a 100644
--- a/lib/ext/signature.c
+++ b/lib/ext/signature.c
@@ -274,6 +274,9 @@ _gnutls_session_get_sign_algo (gnutls_session_t session, gnutls_pcert_st* cert)
           if (_gnutls_pubkey_compatible_with_sig(cert->pubkey, ver, priv->sign_algorithms[i]) < 0)
             continue;
 
+          if (_gnutls_session_sign_algo_enabled(session, priv->sign_algorithms[i]) < 0)
+            continue;
+
           return priv->sign_algorithms[i];
         }
     }
-- 
cgit v1.2.1