Google Git
Sign in
pigweed / third_party / github / ARMmbed / mbedtls / bf63b36127e910c01af65ffe9cba9dfae4ebc07e^! / . / library / ssl_srv.c
commitbf63b36127e910c01af65ffe9cba9dfae4ebc07e[log] [tgz]
authorPaul Bakker <p.j.bakker@polarssl.org>Thu Apr 12 20:44:34 2012 +0000
committerPaul Bakker <p.j.bakker@polarssl.org>Thu Apr 12 20:44:34 2012 +0000
tree72275e6fa1a78d7829e804439ca64c70407ccf89
parentc3f177a77b9f7cf6bcc254786d25f283b7aa9ce6 [diff] [blame]
 - Updated comments


diff --git a/library/ssl_srv.c b/library/ssl_srv.c
index 9ef9731..67fe130 100644
--- a/library/ssl_srv.c
+++ b/library/ssl_srv.c

@@ -636,7 +636,9 @@
          *     ServerDHParams params;
          * };
          */
-        /* TODO TLS1.2 Get Hash algorithm from ciphersuite! */
+        /* TODO TLS1.2 Get a supported hash algorithm from the
+         * signature_algorithms extension, Otherwise SHA1 + RSA!
+         */
      
         sha1_starts( &sha1 );
         sha1_update( &sha1, ssl->randbytes, 64 );
@@ -658,7 +660,7 @@
 
     if( ssl->minor_ver == SSL_MINOR_VERSION_3 )
     {
-        // TODO TLS1.2 Base on signature algorithm extension received
+        // TODO TLS1.2 Base on selection above (SHA1 + RSA is default choice)
         ssl->out_msg[4 + n] = SSL_HASH_SHA1;
         ssl->out_msg[5 + n] = SSL_SIG_RSA;