From fd5c282f7d49606866f69579bf987fe6113490e1 Mon Sep 17 00:00:00 2001 From: =?UTF-8?q?Love=20H=C3=B6rnquist=20=C3=85strand?= Date: Mon, 9 Feb 2009 17:17:43 +0000 Subject: [PATCH] Default to hx509_signature_ecdsa_with_sha1 since private crypto backend must be the one that selects the credential since the ec group might not be able to handle sha256. git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@24665 ec53bebd-3082-4978-b11e-865c3cabbd6b --- lib/hx509/crypto.c | 4 +++- 1 file changed, 3 insertions(+), 1 deletion(-) diff --git a/lib/hx509/crypto.c b/lib/hx509/crypto.c index 932d32fea..245002ad0 100644 --- a/lib/hx509/crypto.c +++ b/lib/hx509/crypto.c @@ -315,6 +315,8 @@ ecdsa_create_signature(hx509_context context, if (der_heim_oid_cmp(sig_oid, oid_id_ecdsa_with_SHA256()) == 0) { digest_alg = hx509_signature_sha256(); + } else if (der_heim_oid_cmp(sig_oid, oid_id_ecdsa_with_SHA1()) == 0) { + digest_alg = hx509_signature_sha1(); } else return HX509_ALG_NOT_SUPP; @@ -1314,7 +1316,7 @@ static struct key2sigalg { const AlgorithmIdentifier *(*sigalg)(void); } key2sigalgs[] = { { oid_id_pkcs1_rsaEncryption, hx509_signature_rsa_with_sha256 }, - { oid_id_ecPublicKey, hx509_signature_ecdsa_with_sha256 } + { oid_id_ecPublicKey, hx509_signature_ecdsa_with_sha1 } };