summary refs log tree commit diff
path: root/crypto/src/tls/TlsClientProtocol.cs
diff options
context:
space:
mode:
authorPeter Dettman <peter.dettman@bouncycastle.org>2022-05-05 17:09:14 +0700
committerPeter Dettman <peter.dettman@bouncycastle.org>2022-05-05 17:09:14 +0700
commit66bea84d9d009eace8144628954a962601673f69 (patch)
tree1ed888c7d164f4229375e91289d75e436dc7f674 /crypto/src/tls/TlsClientProtocol.cs
parentChange method to property (diff)
downloadBouncyCastle.NET-ed25519-66bea84d9d009eace8144628954a962601673f69.tar.xz
Rework TLS 1.3 verifiers
Diffstat (limited to 'crypto/src/tls/TlsClientProtocol.cs')
-rw-r--r--crypto/src/tls/TlsClientProtocol.cs5
1 files changed, 2 insertions, 3 deletions
diff --git a/crypto/src/tls/TlsClientProtocol.cs b/crypto/src/tls/TlsClientProtocol.cs
index cb59289ae..89e7c4ba9 100644
--- a/crypto/src/tls/TlsClientProtocol.cs
+++ b/crypto/src/tls/TlsClientProtocol.cs
@@ -1467,12 +1467,11 @@ namespace Org.BouncyCastle.Tls
             if (null == serverCertificate || serverCertificate.IsEmpty)
                 throw new TlsFatalAlert(AlertDescription.internal_error);
 
-            // TODO[tls13] Actual structure is 'CertificateVerify' in RFC 8446, consider adding for clarity
-            DigitallySigned certificateVerify = DigitallySigned.Parse(m_tlsClientContext, buf);
+            CertificateVerify certificateVerify = CertificateVerify.Parse(m_tlsClientContext, buf);
 
             AssertEmpty(buf);
 
-            TlsUtilities.Verify13CertificateVerifyServer(m_tlsClientContext, certificateVerify, m_handshakeHash);
+            TlsUtilities.Verify13CertificateVerifyServer(m_tlsClientContext, m_handshakeHash, certificateVerify);
         }
 
         /// <exception cref="IOException"/>