From: georgeok <giorgos.n.oikonomou@gmail.com>
Date: Sun, 24 Feb 2019 18:20:57 +0000 (+0000)
Subject: schannel: support CALG_ECDH_EPHEM algorithm
X-Git-Tag: curl-7_64_1~94
X-Git-Url: http://git.ipfire.org/cgi-bin/gitweb.cgi?a=commitdiff_plain;h=531b7ad43a7804d6fdaece570fc39b954373a4a9;p=thirdparty%2Fcurl.git

schannel: support CALG_ECDH_EPHEM algorithm

Add support for Ephemeral elliptic curve Diffie-Hellman key exchange
algorithm option when selecting ciphers. This became available on the
Win10 SDK.

Closes https://github.com/curl/curl/pull/3608
---

diff --git a/docs/CIPHERS.md b/docs/CIPHERS.md
index 0d3be3b56c..c011804267 100644
--- a/docs/CIPHERS.md
+++ b/docs/CIPHERS.md
@@ -496,3 +496,4 @@ WinSSL allows the enabling and disabling of encryption algorithms, but not speci
 `CALG_ECDH`,
 `CALG_ECMQV`,
 `CALG_ECDSA`,
+`CALG_ECDH_EPHEM`,
diff --git a/lib/vtls/schannel.c b/lib/vtls/schannel.c
index 6f55b3b8fe..36e68f9695 100644
--- a/lib/vtls/schannel.c
+++ b/lib/vtls/schannel.c
@@ -323,6 +323,9 @@ get_alg_id_by_name(char *name)
 #endif
 #ifdef CALG_ECDSA
   CIPHEROPTION(CALG_ECDSA);
+#endif
+#ifdef CALG_ECDH_EPHEM
+  CIPHEROPTION(CALG_ECDH_EPHEM);
 #endif
   return 0;
 }