Update ssl code to support digests other than MD5+SHA1 in handshake.

Submitted by: Victor B. Wagner <vitus@cryptocom.ru>
author: Dr. Stephen Henson <steve@openssl.org> 2007-08-31 12:42:53 +0000
committer: Dr. Stephen Henson <steve@openssl.org> 2007-08-31 12:42:53 +0000
commit: 81025661a94034fef1386cb5d5137ba4ddb120f0 (patch)
tree: cde73075708fe40deb5c7dfcd0c03861794599cf /ssl/d1_clnt.c
parent: 4ece7eb6f4d396008d8b4ee6beb6dca409d84882 (diff)
1 files changed, 4 insertions, 2 deletions
diff --git a/ssl/d1_clnt.c b/ssl/d1_clnt.c
index 486bd32b03..1826226ebe 100644
--- a/ssl/d1_clnt.c
+++ b/ssl/d1_clnt.c
@@ -998,14 +998,16 @@ int dtls1_send_client_verify(SSL *s)
 		p= &(d[DTLS1_HM_HEADER_LENGTH]);
 		pkey=s->cert->key->privatekey;
 
-		s->method->ssl3_enc->cert_verify_mac(s,&(s->s3->finish_dgst2),
+		s->method->ssl3_enc->cert_verify_mac(s,
+		NID_sha1,
 			&(data[MD5_DIGEST_LENGTH]));
 
 #ifndef OPENSSL_NO_RSA
 		if (pkey->type == EVP_PKEY_RSA)
 			{
 			s->method->ssl3_enc->cert_verify_mac(s,
-				&(s->s3->finish_dgst1),&(data[0]));
+				NID_md5,
+				&(data[0]));
 			if (RSA_sign(NID_md5_sha1, data,
 					 MD5_DIGEST_LENGTH+SHA_DIGEST_LENGTH,
 					&(p[2]), &u, pkey->pkey.rsa) <= 0 )
author	Dr. Stephen Henson <steve@openssl.org>	2007-08-31 12:42:53 +0000
committer	Dr. Stephen Henson <steve@openssl.org>	2007-08-31 12:42:53 +0000
commit	81025661a94034fef1386cb5d5137ba4ddb120f0 (patch)
tree	cde73075708fe40deb5c7dfcd0c03861794599cf /ssl/d1_clnt.c
parent	4ece7eb6f4d396008d8b4ee6beb6dca409d84882 (diff)