Merge pull request #613 from TakayukiMatsuo/zd16867

Fix index of signature part in case of RSA
2023-11-04 20:55:07 -07:00 · 2023-11-04 20:55:07 -07:00 · 2deee5103c
parent 218a2fd898 13c86631ee
commit 2deee5103c
1 changed files with 1 additions and 1 deletions
--- a/src/internal.c
+++ b/src/internal.c
@ -4303,7 +4303,7 @@ static int DoKexDhReply(WOLFSSH* ssh, byte* buf, word32 len, word32* idx)
        /* Verify h with the server's public key. */
        if (ret == WS_SUCCESS) {
 #ifndef WOLFSSH_NO_RSA
-        int tmpIdx = begin;
+        int tmpIdx = begin - sigSz;
 #endif
            /* Skip past the sig name. Check it, though. Other SSH
             * implementations do the verify based on the name, despite what