diff options
author | Péter Dimitrov <[email protected]> | 2018-11-30 13:39:10 +0100 |
---|---|---|
committer | Péter Dimitrov <[email protected]> | 2019-01-11 09:59:12 +0100 |
commit | a3a147e86b8ab2b878d91a80f8f276d9ec2f2940 (patch) | |
tree | 72135e785a57b52acd74c400c0552198ab1c9050 /lib/ssl/src/ssl_handshake.erl | |
parent | 88733e3e2e9b7e15fac74a42e813da4f19f86482 (diff) | |
download | otp-a3a147e86b8ab2b878d91a80f8f276d9ec2f2940.tar.gz otp-a3a147e86b8ab2b878d91a80f8f276d9ec2f2940.tar.bz2 otp-a3a147e86b8ab2b878d91a80f8f276d9ec2f2940.zip |
ssl: Fix handling of signature algorithms
Change-Id: I5cc6b470ea19e32dd5516a86fe6750c5b51d5368
Diffstat (limited to 'lib/ssl/src/ssl_handshake.erl')
-rw-r--r-- | lib/ssl/src/ssl_handshake.erl | 7 |
1 files changed, 6 insertions, 1 deletions
diff --git a/lib/ssl/src/ssl_handshake.erl b/lib/ssl/src/ssl_handshake.erl index 1b555f0277..d45fea84be 100644 --- a/lib/ssl/src/ssl_handshake.erl +++ b/lib/ssl/src/ssl_handshake.erl @@ -1175,7 +1175,12 @@ kse_remove_private_key(#key_share_entry{ signature_algs_ext(undefined) -> undefined; -signature_algs_ext(SignatureSchemes) -> +signature_algs_ext(SignatureSchemes0) -> + %% The SSL option signature_algs contains both hash-sign algorithms (tuples) and + %% signature schemes (atoms) if TLS 1.3 is configured. + %% Filter out all hash-sign tuples when creating the signature_algs extension. + %% (TLS 1.3 specific record type) + SignatureSchemes = lists:filter(fun is_atom/1, SignatureSchemes0), #signature_algorithms{signature_scheme_list = SignatureSchemes}. signature_algs_cert(undefined) -> |