commit 24811fb2e0b1e8c124da7680d0e4b90ce273f02a
author Jerry Yu <jerry.h.yu@arm.com> Wed Jan 19 18:02:15 2022 +0800
committer Jerry Yu <jerry.h.yu@arm.com> Tue Jan 25 12:46:17 2022 +0800
tree bf79435ba9463d403092c0ed12da4171778d0feb
parent 1bab301c0dd6becb49a3328d009659152d6b5053

replace check_sig_hash with is_offered

Signed-off-by: Jerry Yu <jerry.h.yu@arm.com>

library/ssl_cli.c

diff --git a/library/ssl_cli.c b/library/ssl_cli.c
index 826879c..e411b70 100644
--- a/library/ssl_cli.c
+++ b/library/ssl_cli.c
@@ -2595,7 +2595,6 @@
                                           mbedtls_md_type_t *md_alg,
                                           mbedtls_pk_type_t *pk_alg )
 {
-    ((void) ssl);
     *md_alg = MBEDTLS_MD_NONE;
     *pk_alg = MBEDTLS_PK_NONE;
 
@@ -2631,9 +2630,9 @@
     }
 
     /*
-     * Check if the hash is acceptable
+     * Check if the signature algorithm is acceptable
      */
-    if( mbedtls_ssl_check_sig_hash( ssl, *md_alg ) != 0 )
+    if( !mbedtls_ssl_sig_alg_is_offered( ssl, MBEDTLS_GET_UINT16_BE( *p, 0 ) ) )
     {
         MBEDTLS_SSL_DEBUG_MSG( 1,
             ( "server used HashAlgorithm %d that was not offered", *(p)[0] ) );