[openssl/openssl] f29066: Fix implementation of `PreferNoDHEKEX` option.
Markus Minichmayr
noreply at github.com
Thu Nov 30 17:43:10 UTC 2023
Branch: refs/heads/master
Home: https://github.com/openssl/openssl
Commit: f290663148ddddaffc0dc8737b08a244b49a76ba
https://github.com/openssl/openssl/commit/f290663148ddddaffc0dc8737b08a244b49a76ba
Author: Markus Minichmayr <markus at tapkey.com>
Date: 2023-11-30 (Thu, 30 Nov 2023)
Changed paths:
M ssl/statem/extensions.c
M ssl/statem/extensions_srvr.c
Log Message:
-----------
Fix implementation of `PreferNoDHEKEX` option.
`tls_parse_ctos_key_share()` didn't properly handle the option.
Avoid the need to deal with the option in multiple places by properly
handling it in `tls_parse_ctos_psk_kex_modes()`.
Reviewed-by: Todd Short <todd.short at me.com>
Reviewed-by: Tomas Mraz <tomas at openssl.org>
(Merged from https://github.com/openssl/openssl/pull/22844)
More information about the openssl-commits
mailing list