Allow use of RSA-PSS certificates in TLS 1.2

Reviewed-by: N Ben Kaduk <kaduk@mit.edu> (Merged from https://github.com/openssl/openssl/pull/4368)

Allow use of RSA-PSS certificates in TLS 1.2
Reviewed-by: N Ben Kaduk <kaduk@mit.edu> (Merged from https://github.com/openssl/openssl/pull/4368)
6aaa29fb · Dr. Stephen Henson · b46867d7 · 6aaa29fb
隐藏空白更改
内联并排

Showing with 8 addition and 2 deletion

ssl/ssl_lib.c ssl/ssl_lib.c +8 -2

未找到文件。
--- a/ssl/ssl_lib.c
+++ b/ssl/ssl_lib.c
@@ -3090,9 +3090,15 @@ void ssl_set_masks(SSL *s)
    if (dh_tmp)
        mask_k |= SSL_kDHE;

-    if (rsa_enc || rsa_sign) {
+    /*
+     * If we only have an RSA-PSS certificate allow RSA authentication
+     * if TLS 1.2 and peer supports it.
+     */
+
+    if (rsa_enc || rsa_sign || (ssl_has_cert(s, SSL_PKEY_RSA_PSS_SIGN)
+                && pvalid[SSL_PKEY_RSA_PSS_SIGN] & CERT_PKEY_EXPLICIT_SIGN
+                && TLS1_get_version(s) == TLS1_2_VERSION))
        mask_a |= SSL_aRSA;
-    }

    if (dsa_sign) {
        mask_a |= SSL_aDSS;