|
From: | Nikos Mavrogiannopoulos |
Subject: | Re: [sr #107785] gnutls_sign_func called with hash size of 20 bytes |
Date: | Fri, 23 Sep 2011 14:30:28 +0200 |
User-agent: | Mozilla/5.0 (X11; U; Linux x86_64; en-US; rv:1.9.2.21) Gecko/20110831 Icedove/3.1.13 |
On 09/23/2011 02:16 PM, Bjørn Christensen wrote:
I have got it working with TLS1.2 also by determine the Hash Algorithm by the size of the Hash.
In TLS 1.2 truncated hashes are allowed. Thus you'll not be able to distinguish between SHA256 truncated to 20 bytes from SHA1. This is not a common case (I suppose no-one uses it) but it is allowed.
regards, Nikos
[Prev in Thread] | Current Thread | [Next in Thread] |