diff options
author | Michal Klocek <michal.klocek@qt.io> | 2022-11-08 15:10:01 +0100 |
---|---|---|
committer | Michal Klocek <michal.klocek@qt.io> | 2023-01-03 21:40:18 +0100 |
commit | 38e0df6c6e5a1186b68df9b3d6f4cafbb211f2da (patch) | |
tree | f25b16c1c9512005745c02ab68d05462bde37c75 | |
parent | 783d541b6ecb62a1e36d6c4cb9ab3e7b43286c79 (diff) |
Fix probabilistic signature scheme
We failed to support pss, which ended up in handshake failures
Task-number: QTBUG-109273
Change-Id: I12c50d6a5f2dcf32d47708a958e2fe5a18316986
Reviewed-by: Allan Sandfeld Jensen <allan.jensen@qt.io>
(cherry picked from commit 2d77e333eff7605a489ec65600b78e1b49df37c7)
-rw-r--r-- | src/core/net/client_cert_store_data.cpp | 4 |
1 files changed, 2 insertions, 2 deletions
diff --git a/src/core/net/client_cert_store_data.cpp b/src/core/net/client_cert_store_data.cpp index 314e64145..a96e247b2 100644 --- a/src/core/net/client_cert_store_data.cpp +++ b/src/core/net/client_cert_store_data.cpp @@ -104,8 +104,8 @@ public: std::vector<uint16_t> GetAlgorithmPreferences() override { - return { SSL_SIGN_RSA_PKCS1_SHA1, SSL_SIGN_RSA_PKCS1_SHA512 - , SSL_SIGN_RSA_PKCS1_SHA384, SSL_SIGN_RSA_PKCS1_SHA256 }; + return net::SSLPrivateKey::DefaultAlgorithmPreferences(EVP_PKEY_id(m_key), + /* supports pss */ true); } std::string GetProviderName() override { return "qtwebengine"; |