]> git.ipfire.org Git - thirdparty/hostap.git/commit
projects / thirdparty / hostap.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: 8ff2401) | patch
OpenSSL: Fix server side openssl_ecdh_curves configuration with 1.0.2
authorJouni Malinen <j@w1.fi>
Sat, 13 Apr 2019 13:53:19 +0000 (16:53 +0300)
committerJouni Malinen <j@w1.fi>
Sat, 13 Apr 2019 15:28:05 +0000 (18:28 +0300)
commit6570949b2c1d7b94b3795a6b29b73498aca24d5e
tree6f2e1ee7f804011bfd10289c794d4fd0d4c34734tree | snapshot
parent8ff2401d540bf5a24369ddceac41edf08ec504c8commit | diff
OpenSSL: Fix server side openssl_ecdh_curves configuration with 1.0.2

It looks like SSL_CTX_set1_curves_list() command alone is not sufficient
to enable ECDH curve selection with older OpenSSL versions for TLS
server, so enable automatic selection first and specify the exact list
of curves after that.

This fixes failures in openssl_ecdh_curves test case when hostapd uses
OpenSSL 1.0.2.

Signed-off-by: Jouni Malinen <j@w1.fi>
src/crypto/tls_openssl.c diff | blob | blame | history
Unnamed repository; edit this file 'description' to name the repository.