store and print out message digest peer signed with in TLS 1.2

(backport from HEAD)
2012-12-26 16:23:13 +00:00
parent 67d9dcf003
commit a50ecaee56
4 changed files with 31 additions and 0 deletions
--- a/ssl/t1_lib.c
+++ b/ssl/t1_lib.c
@@ -914,6 +914,11 @@ int tls12_check_peer_sigalg(const EVP_MD **pmd, SSL *s,
 		SSLerr(SSL_F_TLS12_CHECK_PEER_SIGALG,SSL_R_UNKNOWN_DIGEST);
 		return 0;
 		}
+	/* Store the digest used so applications can retrieve it if they
+	 * wish.
+	 */
+	if (s->session && s->session->sess_cert)
+		s->session->sess_cert->peer_key->digest = *pmd;
 	return 1;
 	}
 /* Get a mask of disabled algorithms: an algorithm is disabled