From b109677d03c0eb1062f19ab300b485b90c0c2ad7 Mon Sep 17 00:00:00 2001 From: jsing <> Date: Sun, 27 Jun 2021 18:15:35 +0000 Subject: Change ssl_sigalgs_from_value() to perform sigalg list selection. Rather that passing in a sigalg list at every call site, pass in the appropriate TLS version and have ssl_sigalgs_from_value() perform the sigalg list selection itself. This allows the sigalg lists to be made internal to the sigalgs code. ok tb@ --- src/lib/libssl/tls13_client.c | 6 +++--- 1 file changed, 3 insertions(+), 3 deletions(-) (limited to 'src/lib/libssl/tls13_client.c') diff --git a/src/lib/libssl/tls13_client.c b/src/lib/libssl/tls13_client.c index de9316e8d7..644b16e26c 100644 --- a/src/lib/libssl/tls13_client.c +++ b/src/lib/libssl/tls13_client.c @@ -1,4 +1,4 @@ -/* $OpenBSD: tls13_client.c,v 1.81 2021/06/27 18:09:07 jsing Exp $ */ +/* $OpenBSD: tls13_client.c,v 1.82 2021/06/27 18:15:35 jsing Exp $ */ /* * Copyright (c) 2018, 2019 Joel Sing * @@ -671,8 +671,8 @@ tls13_server_certificate_verify_recv(struct tls13_ctx *ctx, CBS *cbs) if (!CBS_get_u16_length_prefixed(cbs, &signature)) goto err; - if ((sigalg = ssl_sigalg_from_value(signature_scheme, - tls13_sigalgs, tls13_sigalgs_len)) == NULL) + if ((sigalg = ssl_sigalg_from_value(ctx->hs->negotiated_tls_version, + signature_scheme)) == NULL) goto err; if (!CBB_init(&cbb, 0)) -- cgit v1.2.3-55-g6feb