[openssl-commits] [openssl] OpenSSL_1_0_2-stable update

Kurt Roeckx kurt at openssl.org
Tue Mar 24 21:55:14 UTC 2015


The branch OpenSSL_1_0_2-stable has been updated
       via  fe82be2b33714949e24f107af94b5b75206a28cd (commit)
      from  8509128179a93e0b797ab80dadc2dff63ae194b3 (commit)


- Log -----------------------------------------------------------------
commit fe82be2b33714949e24f107af94b5b75206a28cd
Author: Kurt Roeckx <kurt at roeckx.be>
Date:   Sat Mar 14 23:23:26 2015 +0100

    Don't send a for ServerKeyExchange for kDHr and kDHd
    
    The certificate already contains the DH parameters in that case.
    ssl3_send_server_key_exchange() would fail in that case anyway.
    
    Reviewed-by: Matt Caswell <matt at openssl.org>
    (cherry picked from commit 93f1c13619c5b41f2dcfdbf6ae666f867922a87a)

-----------------------------------------------------------------------

Summary of changes:
 ssl/d1_srvr.c | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/ssl/d1_srvr.c b/ssl/d1_srvr.c
index eafa012..a184150 100644
--- a/ssl/d1_srvr.c
+++ b/ssl/d1_srvr.c
@@ -486,7 +486,7 @@ int dtls1_accept(SSL *s)
 #ifndef OPENSSL_NO_PSK
                 || ((alg_k & SSL_kPSK) && s->ctx->psk_identity_hint)
 #endif
-                || (alg_k & (SSL_kEDH | SSL_kDHr | SSL_kDHd))
+                || (alg_k & SSL_kDHE)
                 || (alg_k & SSL_kEECDH)
                 || ((alg_k & SSL_kRSA)
                     && (s->cert->pkeys[SSL_PKEY_RSA_ENC].privatekey == NULL


More information about the openssl-commits mailing list