diff options
author | Peter Dettman <peter.dettman@bouncycastle.org> | 2022-05-05 17:09:14 +0700 |
---|---|---|
committer | Peter Dettman <peter.dettman@bouncycastle.org> | 2022-05-05 17:09:14 +0700 |
commit | 66bea84d9d009eace8144628954a962601673f69 (patch) | |
tree | 1ed888c7d164f4229375e91289d75e436dc7f674 /crypto/src/tls/TlsClientProtocol.cs | |
parent | Change method to property (diff) | |
download | BouncyCastle.NET-ed25519-66bea84d9d009eace8144628954a962601673f69.tar.xz |
Rework TLS 1.3 verifiers
Diffstat (limited to 'crypto/src/tls/TlsClientProtocol.cs')
-rw-r--r-- | crypto/src/tls/TlsClientProtocol.cs | 5 |
1 files changed, 2 insertions, 3 deletions
diff --git a/crypto/src/tls/TlsClientProtocol.cs b/crypto/src/tls/TlsClientProtocol.cs index cb59289ae..89e7c4ba9 100644 --- a/crypto/src/tls/TlsClientProtocol.cs +++ b/crypto/src/tls/TlsClientProtocol.cs @@ -1467,12 +1467,11 @@ namespace Org.BouncyCastle.Tls if (null == serverCertificate || serverCertificate.IsEmpty) throw new TlsFatalAlert(AlertDescription.internal_error); - // TODO[tls13] Actual structure is 'CertificateVerify' in RFC 8446, consider adding for clarity - DigitallySigned certificateVerify = DigitallySigned.Parse(m_tlsClientContext, buf); + CertificateVerify certificateVerify = CertificateVerify.Parse(m_tlsClientContext, buf); AssertEmpty(buf); - TlsUtilities.Verify13CertificateVerifyServer(m_tlsClientContext, certificateVerify, m_handshakeHash); + TlsUtilities.Verify13CertificateVerifyServer(m_tlsClientContext, m_handshakeHash, certificateVerify); } /// <exception cref="IOException"/> |