From e8c845c56c137c457bf950abe653322c94bbc43a Mon Sep 17 00:00:00 2001
From: Ingela Anderton Andin <ingela@erlang.org>
Date: Thu, 28 Apr 2016 15:09:08 +0200
Subject: ssl: Correct guard expression

The guard should check that the TLS version is at least TLS-1.2.
---
 lib/ssl/src/tls_handshake.erl | 5 +++--
 1 file changed, 3 insertions(+), 2 deletions(-)

(limited to 'lib/ssl')

diff --git a/lib/ssl/src/tls_handshake.erl b/lib/ssl/src/tls_handshake.erl
index ef718c13df..102dbba198 100644
--- a/lib/ssl/src/tls_handshake.erl
+++ b/lib/ssl/src/tls_handshake.erl
@@ -278,10 +278,11 @@ handle_server_hello_extensions(Version, SessionId, Random, CipherSuite,
 	    {Version, SessionId, ConnectionStates, ProtoExt, Protocol}
     end.
 
-available_signature_algs(undefined, SupportedHashSigns, _, {Major, Minor}) when (Major < 3) andalso (Minor < 3) ->
+available_signature_algs(undefined, SupportedHashSigns, _, {Major, Minor}) when 
+      (Major >= 3) andalso (Minor >= 3) ->
     SupportedHashSigns;
 available_signature_algs(#hash_sign_algos{hash_sign_algos = ClientHashSigns}, SupportedHashSigns, 
-		     _, {Major, Minor}) when (Major < 3) andalso (Minor < 3) ->
+		     _, {Major, Minor}) when (Major >= 3) andalso (Minor >= 3) ->
     ordsets:intersection(ClientHashSigns, SupportedHashSigns);
 available_signature_algs(_, _, _, _) -> 
     undefined.
-- 
cgit v1.2.3