From 294f4e9fc882f5ef541a4e7fc169b23f9db50646 Mon Sep 17 00:00:00 2001
From: Nikos Mavrogiannopoulos <nmav@gnutls.org>
Date: Sat, 19 Mar 2011 12:07:51 +0100
Subject: Return a special error code if DSA keys with over 1024 are being used
 with TLS 1.x, x<2.

---
 lib/gnutls_alert.c | 1 +
 1 file changed, 1 insertion(+)

(limited to 'lib/gnutls_alert.c')

diff --git a/lib/gnutls_alert.c b/lib/gnutls_alert.c
index b173057daf..0663669d59 100644
--- a/lib/gnutls_alert.c
+++ b/lib/gnutls_alert.c
@@ -206,6 +206,7 @@ gnutls_error_to_alert (int err, int *level)
     case GNUTLS_E_NO_COMPRESSION_ALGORITHMS:
     case GNUTLS_E_UNSUPPORTED_SIGNATURE_ALGORITHM:
     case GNUTLS_E_SAFE_RENEGOTIATION_FAILED:
+    case GNUTLS_E_INCOMPAT_DSA_KEY_WITH_TLS_PROTOCOL:
       ret = GNUTLS_A_HANDSHAKE_FAILURE;
       _level = GNUTLS_AL_FATAL;
       break;
-- 
cgit v1.2.1