[openssl-commits] [openssl] OpenSSL_1_0_1-stable update
Kurt Roeckx
kurt at openssl.org
Tue Mar 24 21:59:36 UTC 2015
The branch OpenSSL_1_0_1-stable has been updated
via 23a9b24aa100cc1c5c7d2c95252f2520680d2e58 (commit)
from 5d74b4b4b3562ebb192cbebcbfadcce751625054 (commit)
- Log -----------------------------------------------------------------
commit 23a9b24aa100cc1c5c7d2c95252f2520680d2e58
Author: Kurt Roeckx <kurt at roeckx.be>
Date: Sat Mar 14 23:23:26 2015 +0100
Don't send a for ServerKeyExchange for kDHr and kDHd
The certificate already contains the DH parameters in that case.
ssl3_send_server_key_exchange() would fail in that case anyway.
Reviewed-by: Matt Caswell <matt at openssl.org>
(cherry picked from commit 93f1c13619c5b41f2dcfdbf6ae666f867922a87a)
-----------------------------------------------------------------------
Summary of changes:
ssl/d1_srvr.c | 2 +-
1 file changed, 1 insertion(+), 1 deletion(-)
diff --git a/ssl/d1_srvr.c b/ssl/d1_srvr.c
index c4ec9fe..d12ad6d 100644
--- a/ssl/d1_srvr.c
+++ b/ssl/d1_srvr.c
@@ -470,7 +470,7 @@ int dtls1_accept(SSL *s)
#ifndef OPENSSL_NO_PSK
|| ((alg_k & SSL_kPSK) && s->ctx->psk_identity_hint)
#endif
- || (alg_k & (SSL_kEDH | SSL_kDHr | SSL_kDHd))
+ || (alg_k & SSL_kEDH)
|| (alg_k & SSL_kEECDH)
|| ((alg_k & SSL_kRSA)
&& (s->cert->pkeys[SSL_PKEY_RSA_ENC].privatekey == NULL
More information about the openssl-commits
mailing list