mirror of
https://github.com/Mbed-TLS/mbedtls.git
synced 2025-07-26 13:21:03 +03:00
Corrected behaviour for CBC-based suites using the SHA384 MAC and PRF
This commit is contained in:
@ -1347,8 +1347,8 @@ static int ssl_write_certificate_verify( ssl_context *ssl )
|
||||
* Reason: Otherwise we should have running hashes for SHA512 and SHA224
|
||||
* in order to satisfy 'weird' needs from the server side.
|
||||
*/
|
||||
if( ssl->transform_negotiate->ciphersuite_info->cipher ==
|
||||
POLARSSL_CIPHER_AES_256_GCM )
|
||||
if( ssl->transform_negotiate->ciphersuite_info->mac ==
|
||||
POLARSSL_MD_SHA384 )
|
||||
{
|
||||
hash_id = SIG_RSA_SHA384;
|
||||
hashlen = 48;
|
||||
|
Reference in New Issue
Block a user