Google Git
Sign in
boringssl/boringssl.git/c9a43688780a7808d54a20283a3ee96d80adeb25^!/.
commit
c9a43688780a7808d54a20283a3ee96d80adeb25
[log]
author
David Benjamin <davidben@google.com>
Tue Jun 21 17:30:54 2016 -0400
committer
David Benjamin <davidben@google.com>
Tue Jun 21 21:34:23 2016 +0000
tree
7bf0f2cb86a1037bee695bf993e493c3beadc5f1
parent
fd4d67cb5b5c839e2c3dbadffd528511186fe893 [diff]
Fix the new ECDHE_PSK ciphers.

They were defined with the wrong MAC.

Change-Id: I531678dccd53850221d271c79338cfe37d4bb298
Reviewed-on: https://boringssl-review.googlesource.com/8422
Reviewed-by: Nick Harper <nharper@google.com>
Reviewed-by: David Benjamin <davidben@google.com>

diff --git a/ssl/ssl_cipher.c b/ssl/ssl_cipher.c
index 1aad8c4..539472d 100644
--- a/ssl/ssl_cipher.c
+++ b/ssl/ssl_cipher.c

@@ -669,7 +669,7 @@
      SSL_kECDHE,
      SSL_aPSK,
      SSL_AES128GCM,
-     SSL_SHA256,
+     SSL_AEAD,
      SSL_HANDSHAKE_MAC_SHA256,
     },
 
@@ -680,7 +680,7 @@
      SSL_kECDHE,
      SSL_aPSK,
      SSL_AES256GCM,
-     SSL_SHA384,
+     SSL_AEAD,
      SSL_HANDSHAKE_MAC_SHA384,
     },