Corrected behaviour for CBC-based suites using the SHA384 MAC and PRF

commit: b7149bcc90b83cb13131074b48b86451a711c49b [log] [tgz]
author: Paul Bakker <p.j.bakker@polarssl.org> Wed Mar 20 15:30:09 2013 +0100
committer: Paul Bakker <p.j.bakker@polarssl.org> Wed Mar 20 15:30:09 2013 +0100
tree: 99676ecc352156ce4ab490d07274e7464d332996
parent: a0234377fc2c32b239b2b4bbf13bd617bc7932cf [diff] [blame]
diff --git a/library/ssl_cli.c b/library/ssl_cli.c
index 68c06cc..dae98fa 100644
--- a/library/ssl_cli.c
+++ b/library/ssl_cli.c

@@ -1347,8 +1347,8 @@
          * Reason: Otherwise we should have running hashes for SHA512 and SHA224
          *         in order to satisfy 'weird' needs from the server side.
          */
-        if( ssl->transform_negotiate->ciphersuite_info->cipher ==
-            POLARSSL_CIPHER_AES_256_GCM )
+        if( ssl->transform_negotiate->ciphersuite_info->mac ==
+            POLARSSL_MD_SHA384 )
         {
             hash_id = SIG_RSA_SHA384;
             hashlen = 48;
commit	b7149bcc90b83cb13131074b48b86451a711c49b	[log] [tgz]
author	Paul Bakker <p.j.bakker@polarssl.org>	Wed Mar 20 15:30:09 2013 +0100
committer	Paul Bakker <p.j.bakker@polarssl.org>	Wed Mar 20 15:30:09 2013 +0100
tree	99676ecc352156ce4ab490d07274e7464d332996
parent	a0234377fc2c32b239b2b4bbf13bd617bc7932cf [diff] [blame]