[openssl] master update

beldmit at gmail.com beldmit at gmail.com
Wed Aug 11 07:48:37 UTC 2021


The branch master has been updated
       via  b4f1b7b65871de8f44228e77fc9ab2ac8b6d7918 (commit)
      from  ad2fc0bed4a111a5ff6803ee2ed0fee98db9d2f2 (commit)


- Log -----------------------------------------------------------------
commit b4f1b7b65871de8f44228e77fc9ab2ac8b6d7918
Author: Dmitry Belyavskiy <beldmit at gmail.com>
Date:   Wed Aug 4 15:40:24 2021 +0200

    Omitted signature_algorithms extension alerts updated
    
    Fixes #15484
    
    Reviewed-by: Tomas Mraz <tomas at openssl.org>
    (Merged from https://github.com/openssl/openssl/pull/16217)

-----------------------------------------------------------------------

Summary of changes:
 ssl/t1_lib.c | 4 ++--
 1 file changed, 2 insertions(+), 2 deletions(-)

diff --git a/ssl/t1_lib.c b/ssl/t1_lib.c
index 3579202c22..9345838f6a 100644
--- a/ssl/t1_lib.c
+++ b/ssl/t1_lib.c
@@ -3302,7 +3302,7 @@ int tls_choose_sigalg(SSL *s, int fatalerrs)
                 if ((lu = tls1_get_legacy_sigalg(s, -1)) == NULL) {
                     if (!fatalerrs)
                         return 1;
-                    SSLfatal(s, SSL_AD_INTERNAL_ERROR,
+                    SSLfatal(s, SSL_AD_HANDSHAKE_FAILURE,
                              SSL_R_NO_SUITABLE_SIGNATURE_ALGORITHM);
                     return 0;
                 }
@@ -3317,7 +3317,7 @@ int tls_choose_sigalg(SSL *s, int fatalerrs)
                 if (i == sent_sigslen) {
                     if (!fatalerrs)
                         return 1;
-                    SSLfatal(s, SSL_AD_ILLEGAL_PARAMETER,
+                    SSLfatal(s, SSL_AD_HANDSHAKE_FAILURE,
                              SSL_R_WRONG_SIGNATURE_TYPE);
                     return 0;
                 }


More information about the openssl-commits mailing list