From 6bcdc7994b6de7fb2bac5b7e692e94ffade416a6 Mon Sep 17 00:00:00 2001 From: Laurent Bercot Date: Thu, 3 Jun 2021 00:41:38 +0000 Subject: Don't hardcode ecdsa signature implementation in sni_policy --- src/sbearssl/sbearssl_sni_policy_vtable.c | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/src/sbearssl/sbearssl_sni_policy_vtable.c b/src/sbearssl/sbearssl_sni_policy_vtable.c index 26bc9a6..aeefa7d 100644 --- a/src/sbearssl/sbearssl_sni_policy_vtable.c +++ b/src/sbearssl/sbearssl_sni_policy_vtable.c @@ -105,7 +105,7 @@ static int choose (br_ssl_server_policy_class const **pctx, br_ssl_server_contex if (sbearssl_ec_issuer_keytype(&kt, &choices->chain[0])) return 0 ; if (!sbearssl_choose_algos_ec(sc, choices, BR_KEYTYPE_KEYX | BR_KEYTYPE_SIGN, kt)) return 0 ; pol->keyx.ec = sc->eng.iec ; /* the br_ssl_engine_get_ec() abstraction lacks a const */ - pol->sign.ec = br_ecdsa_i31_sign_asn1 ; /* have to hardcode, no access to BR_LOMUL */ + pol->sign.ec = br_ecdsa_sign_asn1_get_default() ; pol->mhash = &sc->eng.mhash ; /* missing an abstraction function there */ break ; } -- cgit v1.2.3