diff options
Diffstat (limited to 'ssl/test/runner/sign.go')
-rw-r--r-- | ssl/test/runner/sign.go | 13 |
1 files changed, 13 insertions, 0 deletions
diff --git a/ssl/test/runner/sign.go b/ssl/test/runner/sign.go index e0c6a92..8b38139 100644 --- a/ssl/test/runner/sign.go +++ b/ssl/test/runner/sign.go @@ -81,6 +81,19 @@ func verifyMessage(version uint16, key crypto.PublicKey, config *Config, sigAlg return signer.verifyMessage(key, msg, sig) } +func verifyMessageDC(version uint16, key crypto.PublicKey, config *Config, sigAlg signatureAlgorithm, msg, sig []byte) error { + if version >= VersionTLS12 && !slices.Contains(config.DelegatedCredentialAlgorithms, sigAlg) { + return errors.New("tls: unsupported signature algorithm") + } + + signer, err := getSigner(version, key, config, sigAlg, true) + if err != nil { + return err + } + + return signer.verifyMessage(key, msg, sig) +} + type rsaPKCS1Signer struct { hash crypto.Hash } |