c2b9d984e9c39b23fc4b8af7e46be5f0f751e5e5 - mirror/mbed-tls

commit	c2b9d984e9c39b23fc4b8af7e46be5f0f751e5e5	[log] [tgz]
author	Hanno Becker <hanno.becker@arm.com>	Wed May 10 16:37:21 2017 +0100
committer	Hanno Becker <hanno.becker@arm.com>	Wed May 24 10:47:54 2017 +0100
tree	a5cf1e83a6849c10c16dbebebb8e80efe9566ee5
parent	98864d5c0b154eda7aeb2c2bffe7e7e1c97424bc [diff]

Remember suitable hash function for any signature algorithm.

This commit changes `ssl_parse_signature_algorithms_ext` to remember
one suitable ( := supported by client and by our config ) hash
algorithm per signature algorithm.

It also modifies the ciphersuite checking function
`ssl_ciphersuite_match` to refuse a suite if there
is no suitable hash algorithm.

Finally, it adds the corresponding entry to the ChangeLog.

ChangeLog[diff]
include/polarssl/ssl.h[diff]
include/polarssl/ssl_ciphersuites.h[diff]
library/ssl_ciphersuites.c[diff]
library/ssl_srv.c[diff]
library/ssl_tls.c[diff]

6 files changed

tree: a5cf1e83a6849c10c16dbebebb8e80efe9566ee5

configs/
doxygen/
include/
library/
programs/
scripts/
tests/
visualc/
.gitignore
.travis.yml
ChangeLog
CMakeLists.txt
DartConfiguration.tcl
LICENSE
Makefile
README.rst