From 2360035b59e3b9a5d0ea6b20a3d32f5b18cdbbc7 Mon Sep 17 00:00:00 2001
From: Nikos Mavrogiannopoulos <nmav@gnutls.org>
Date: Sat, 1 Sep 2012 19:07:18 +0200
Subject: [PATCH] Be tolerant is ECDSA-violating signatures.

---
 lib/gnutls_pubkey.c | 1 +
 1 file changed, 1 insertion(+)

diff --git a/lib/gnutls_pubkey.c b/lib/gnutls_pubkey.c
index f2be13031..18541063c 100644
--- a/lib/gnutls_pubkey.c
+++ b/lib/gnutls_pubkey.c
@@ -1532,6 +1532,7 @@ unsigned int sig_hash_size;
       else if (sign != GNUTLS_SIGN_UNKNOWN)
         {
           sig_hash_size = _gnutls_hash_get_algo_len(_gnutls_sign_get_hash_algorithm(sign));
+
           if (sig_hash_size < hash_size)
             _gnutls_audit_log(session, "The hash size used in signature (%u) is less than the expected (%u)\n", sig_hash_size, hash_size);
         }
-- 
2.11.4.GIT