artulab
projects / openbsd / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: 748ad6d) | patch
Clean up pkey handling in ssl3_get_server_key_exchange()
authorjsing <jsing@openbsd.org>
Sun, 9 Jan 2022 13:17:33 +0000 (13:17 +0000)
committerjsing <jsing@openbsd.org>
Sun, 9 Jan 2022 13:17:33 +0000 (13:17 +0000)
commitde3a27964b222c4be979b46c1662d48f67059711
tree98a17b1dc7f34d5787bba11a0bdb1309bf010253tree | snapshot
parent748ad6d00f98633f0f421188a03ecd3eac2c235bcommit | diff
Clean up pkey handling in ssl3_get_server_key_exchange()

With TLSv1.2 and earlier, the authentication algorithm used to sign the
ServerKeyExchange message is dependent on the cipher suite in use and has
nothing to do with the key exchange algorithm. As such, check the
authentication algorithm based on the cipher suite in
ssl3_get_server_key_exchange() and handle things accordingly.

ok inoguchi@ tb@
lib/libssl/ssl_clnt.c diff | blob | history
OpenBSD src
by Ahmet Artu Yildirim