aboutsummaryrefslogtreecommitdiffstats
path: root/lib/ssl/src/ssl_cipher.erl
diff options
context:
space:
mode:
authorPéter Dimitrov <[email protected]>2019-04-10 11:37:14 +0200
committerPéter Dimitrov <[email protected]>2019-04-10 11:37:14 +0200
commit1782d1d032e0c284884a6f26d3a43b4608d5360a (patch)
treea3249b17a74b54662e5f75e43382da5f7dfc5888 /lib/ssl/src/ssl_cipher.erl
parent77a3d2a706c84e4ce46ae00f2e3f1e08c06dfc65 (diff)
downloadotp-1782d1d032e0c284884a6f26d3a43b4608d5360a.tar.gz
otp-1782d1d032e0c284884a6f26d3a43b4608d5360a.tar.bz2
otp-1782d1d032e0c284884a6f26d3a43b4608d5360a.zip
ssl: Handle legacy algorithms in signature_scheme/1
Handle legacy signature algorithms in TLS 1.3 ClientHello to improve debug logging. Change-Id: If5548c828aabab83a2b147dffa7e937bd98916c6
Diffstat (limited to 'lib/ssl/src/ssl_cipher.erl')
-rw-r--r--lib/ssl/src/ssl_cipher.erl5
1 files changed, 5 insertions, 0 deletions
diff --git a/lib/ssl/src/ssl_cipher.erl b/lib/ssl/src/ssl_cipher.erl
index 850dee7d4f..2238b5290d 100644
--- a/lib/ssl/src/ssl_cipher.erl
+++ b/lib/ssl/src/ssl_cipher.erl
@@ -939,6 +939,11 @@ signature_scheme(?RSA_PSS_PSS_SHA384) -> rsa_pss_pss_sha384;
signature_scheme(?RSA_PSS_PSS_SHA512) -> rsa_pss_pss_sha512;
signature_scheme(?RSA_PKCS1_SHA1) -> rsa_pkcs1_sha1;
signature_scheme(?ECDSA_SHA1) -> ecdsa_sha1;
+%% Handling legacy signature algorithms for logging purposes. These algorithms
+%% cannot be used in TLS 1.3 handshakes.
+signature_scheme(SignAlgo) when is_integer(SignAlgo) ->
+ <<?BYTE(Hash),?BYTE(Sign)>> = <<?UINT16(SignAlgo)>>,
+ {ssl_cipher:hash_algorithm(Hash), ssl_cipher:sign_algorithm(Sign)};
signature_scheme(_) -> unassigned.
%% TODO: reserved code points?
generated by cgit v1.2.3 (git 2.25.1) at 2024-06-26 04:02:39 +0000