]> git.ipfire.org Git - thirdparty/openssl.git/commit
projects / thirdparty / openssl.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: 40d8060) | patch
Support FFDHE groups in tls1_shared_group
authorJoachim Vandersmissen <git@jvdsn.com>
Mon, 15 Dec 2025 06:46:12 +0000 (17:46 +1100)
committerAlexandr Nedvedicky <sashan@openssl.org>
Thu, 5 Feb 2026 09:09:18 +0000 (10:09 +0100)
commite23b33a9956b45b61bd447169ddd3841ca9dfd61
tree484222f554f7034e33e7a79bb55c1184f95682e7tree | snapshot
parent40d8060c0e8af7c7d3f0d70a7e2d3bf96a15fc10commit | diff
Support FFDHE groups in tls1_shared_group

Update tls1_shared_group to allow filtering for FFDHE and/or ECDHE
groups. This will be used for implementing RFC 7919 groups support in
the TLS 1.2 server. As defined in RFC 7919:
   Codepoints in the "Supported Groups Registry" with a high byte of
   0x01 (that is, between 256 and 511, inclusive) are set aside for
   FFDHE groups

Reviewed-by: Viktor Dukhovni <viktor@openssl.org>
Reviewed-by: Matt Caswell <matt@openssl.org>
Reviewed-by: Saša Nedvědický <sashan@openssl.org>
MergeDate: Thu Feb  5 09:09:38 2026
(Merged from https://github.com/openssl/openssl/pull/24551)
include/internal/tlsgroups.h diff | blob | blame | history
providers/common/capabilities.c diff | blob | blame | history
ssl/s3_lib.c diff | blob | blame | history
ssl/ssl_local.h diff | blob | blame | history
ssl/statem/statem_srvr.c diff | blob | blame | history
ssl/t1_lib.c diff | blob | blame | history
Mirror of https://github.com/openssl/openssl.git