pubkey: print the failed signature algorithm when verification fails

Signed-off-by: Nikos Mavrogiannopoulos <nmav@redhat.com>
author: Nikos Mavrogiannopoulos <nmav@redhat.com> 2017-07-03 09:52:21 +0200
committer: Nikos Mavrogiannopoulos <nmav@redhat.com> 2017-07-13 14:48:08 +0200
commit: 8bf09b20b41957e95794312b9e4b3aafaed9f4fe (patch)
tree: 3b5e5043c7a339f3b860b80b1fd081e5ad55acce /lib/pubkey.c
parent: 8bd7e1b0bd3bd6efc8fb35158e0b68014fcfce62 (diff)
download: gnutls-8bf09b20b41957e95794312b9e4b3aafaed9f4fe.tar.gz
1 files changed, 1 insertions, 0 deletions
diff --git a/lib/pubkey.c b/lib/pubkey.c
index b345871073..fa7bccc679 100644
--- a/lib/pubkey.c
+++ b/lib/pubkey.c
@@ -1522,6 +1522,7 @@ gnutls_pubkey_verify_data2(gnutls_pubkey_t pubkey,
 	}
 
 	if (gnutls_sign_is_secure(algo) == 0 && _gnutls_is_broken_sig_allowed(algo, flags) == 0) {
+		_gnutls_debug_log("signature algorithm %s is insecure\n", gnutls_sign_get_name(algo));
 		return gnutls_assert_val(GNUTLS_E_INSUFFICIENT_SECURITY);
 	}
author	Nikos Mavrogiannopoulos <nmav@redhat.com>	2017-07-03 09:52:21 +0200
committer	Nikos Mavrogiannopoulos <nmav@redhat.com>	2017-07-13 14:48:08 +0200
commit	8bf09b20b41957e95794312b9e4b3aafaed9f4fe (patch)
tree	3b5e5043c7a339f3b860b80b1fd081e5ad55acce /lib/pubkey.c
parent	8bd7e1b0bd3bd6efc8fb35158e0b68014fcfce62 (diff)
download	gnutls-8bf09b20b41957e95794312b9e4b3aafaed9f4fe.tar.gz