]> Cypherpunks.ru repositories - ucspi.git/blobdiff - cmd/tlsc/main.go
projects / ucspi.git / blobdiff
summary | shortlog | log | commit | commitdiff | tree
raw | inline | side by side
Up to date Go
[ucspi.git] / cmd / tlsc / main.go
diff --git a/cmd/tlsc/main.go b/cmd/tlsc/main.go
index 2d130b1702684233ad53f29367e179b95eab963c..21a63ec712cdab46c0655ab08f255a9aeccff2fd 100644 (file)
--- a/cmd/tlsc/main.go
+++ b/cmd/tlsc/main.go
@@ -1,6 +1,6 @@
 /*
 ucspi/cmd/tlsc -- UCSPI TLS client
-Copyright (C) 2021-2022 Sergey Matveev <stargrave@stargrave.org>
+Copyright (C) 2021-2023 Sergey Matveev <stargrave@stargrave.org>
 
 This program is free software: you can redistribute it and/or modify
 it under the terms of the GNU General Public License as published by
@@ -95,7 +95,7 @@ func main() {
                cfg.VerifyPeerCertificate = func(rawCerts [][]byte, verifiedChains [][]*x509.Certificate) error {
                        spki := verifiedChains[0][0].RawSubjectPublicKeyInfo
                        hshTheir := sha256.Sum256(spki)
-                       if bytes.Compare(hshOur, hshTheir[:]) != 0 {
+                       if !bytes.Equal(hshOur, hshTheir[:]) {
                                return errors.New("server certificate's SPKI hash mismatch")
                        }
                        return nil
UCSPI-related utilities