artulab
projects / openbsd / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: 29c3288) | patch
Refactor ssl3_get_server_kex_ecdhe() to separate parsing and validation.
authorjsing <jsing@openbsd.org>
Tue, 4 Jan 2022 11:14:54 +0000 (11:14 +0000)
committerjsing <jsing@openbsd.org>
Tue, 4 Jan 2022 11:14:54 +0000 (11:14 +0000)
commitca11234ca265c5ce63035d0eaef5f56ed93e48d7
tree0a1c68e4e5855cf0d07087bf032caa50f20559b4tree | snapshot
parent29c328861a32c7dc59b92aaa274e9308f7bc1a43commit | diff
Refactor ssl3_get_server_kex_ecdhe() to separate parsing and validation.

If we receive something other than a "named curve", send a handshake
failure alert as we're unable to complete the handshake with the given
parameters. If the server responded with a curve that we did not advertise
send an illegal parameter alert.

ok inoguchi@ tb@
lib/libssl/ssl_clnt.c diff | blob | history
OpenBSD src
by Ahmet Artu Yildirim