lib/mbedtls
1
0
Fork 0
mirror of https://github.com/Mbed-TLS/mbedtls.git synced 2025-07-28 00:21:48 +03:00
Code Activity

Declare ECDSA key exchange and ciphersuites

Browse Source 
Also fix bug in ssl_list_ciphersuites().

For now, disable it on server.
Client will offer it but fail if server selects it.
This commit is contained in:
Manuel Pégourié-Gonnard
2013-08-17 17:39:04 +02:00
parent 0b03200e96
commit 32ea60a127
4 changed files with 152 additions and 7 deletions
Download Patch File Download Diff File Expand all files Collapse all files

8
library/ssl_srv.c
View File

@ -1318,6 +1318,10 @@ static int ssl_parse_client_hello( ssl_context *ssl )
continue;
#endif
if( ciphersuite_info->key_exchange ==
POLARSSL_KEY_EXCHANGE_ECDHE_ECDSA )
continue;
goto have_ciphersuite;
}
}
@ -1603,9 +1607,9 @@ static int ssl_write_server_hello( ssl_context *ssl )
*p++ = (unsigned char)( ssl->session_negotiate->ciphersuite );
*p++ = (unsigned char)( ssl->session_negotiate->compression );
SSL_DEBUG_MSG( 3, ( "server hello, chosen ciphersuite: %d",
SSL_DEBUG_MSG( 3, ( "server hello, chosen ciphersuite: 0x%04X",
ssl->session_negotiate->ciphersuite ) );
SSL_DEBUG_MSG( 3, ( "server hello, compress alg.: %d",
SSL_DEBUG_MSG( 3, ( "server hello, compress alg.: 0x%02X",
ssl->session_negotiate->compression ) );
/*