/* NOTREACHED */
}
#if GNUTLS_VERSION_NUMBER < 0x030600
#define GNUTLS_VERIFY_ALLOW_SIGN_WITH_SHA1 0
#endif
rsastat = gnutls_pubkey_verify_hash2(rsa->rsa_pubkey,
sign_algo, 0,
sign_algo,
GNUTLS_VERIFY_ALLOW_SIGN_WITH_SHA1,
&rsa->rsa_digest,
&rsa->rsa_sig);
if (rsastat < 0)
-