We were mistakenly falling through to the ECDSA/SHA256 check.
ret = ecdsa_verify(&pubkey.ecc,
SHA1_DIGEST_SIZE, hash, &dsasig) ?
ONAK_E_OK : ONAK_E_BAD_SIGNATURE;
ret = ecdsa_verify(&pubkey.ecc,
SHA1_DIGEST_SIZE, hash, &dsasig) ?
ONAK_E_OK : ONAK_E_BAD_SIGNATURE;
case KEYHASH(OPENPGP_PKALGO_ECDSA, OPENPGP_HASH_SHA256):
ret = ecdsa_verify(&pubkey.ecc,
SHA256_DIGEST_SIZE, hash, &dsasig) ?
case KEYHASH(OPENPGP_PKALGO_ECDSA, OPENPGP_HASH_SHA256):
ret = ecdsa_verify(&pubkey.ecc,
SHA256_DIGEST_SIZE, hash, &dsasig) ?