Google Git
Sign in
boringssl / boringssl / 55a436497f7fa0320060e501a10e57821981af57
commit55a436497f7fa0320060e501a10e57821981af57[log] [tgz]
authorDavid Benjamin <davidben@chromium.org>Mon Apr 20 14:45:55 2015 -0400
committerAdam Langley <agl@google.com>Tue Apr 28 20:44:01 2015 +0000
treedfdb272ab4c7651d274c89b66c4c372fddc7f69b
parent256451c4618cbec001e0a06175229a025123ab42 [diff]
Handle empty curve preferences from the client.

See upstream's bd891f098bdfcaa285c073ce556d0f5e27ec3a10. It honestly seems
kinda dumb for a client to do this, but apparently the spec allows this.
Judging by code inspection, OpenSSL 1.0.1 also allowed this, so this avoids a
behavior change when switching from 1.0.1 to BoringSSL.

Add a test for this, which revealed that, unlike upstream's version, this
actually works with ecdh_auto since tls1_get_shared_curve also needs updating.
(To be mentioned in newsletter.)

Change-Id: Ie622700f17835965457034393b90f346740cfca8
Reviewed-on: https://boringssl-review.googlesource.com/4464
Reviewed-by: Adam Langley <agl@google.com>
4 files changed
tree: dfdb272ab4c7651d274c89b66c4c372fddc7f69b
  1. crypto/
  2. decrepit/
  3. doc/
  4. include/
  5. ssl/
  6. tool/
  7. util/
  8. .clang-format
  9. .gitignore
  10. BUILDING
  11. CMakeLists.txt
  12. codereview.settings
  13. STYLE