diff options
author | Darren Tucker <dtucker@zip.com.au> | 2013-11-08 19:50:32 +1100 |
---|---|---|
committer | Darren Tucker <dtucker@zip.com.au> | 2013-11-08 19:50:32 +1100 |
commit | 1c8ce34909886288a3932dce770deec5449f7bb5 (patch) | |
tree | 5236063fb9267d7146a95045652def330f7ed4a1 | |
parent | ccdb9bec46bcc88549b26a94aa0bae2b9f51031c (diff) |
- (dtucker) [kex.c] Only enable CURVE25519_SHA256 if we actually have
EVP_sha256.
-rw-r--r-- | ChangeLog | 2 | ||||
-rw-r--r-- | kex.c | 2 |
2 files changed, 4 insertions, 0 deletions
@@ -21,6 +21,8 @@ | |||
21 | - (dtucker) [openbsd-compat/openbsd-compat.h] Add null implementation of | 21 | - (dtucker) [openbsd-compat/openbsd-compat.h] Add null implementation of |
22 | arc4random_stir for platforms that have arc4random but don't have | 22 | arc4random_stir for platforms that have arc4random but don't have |
23 | arc4random_stir (right now this is only OpenBSD -current). | 23 | arc4random_stir (right now this is only OpenBSD -current). |
24 | - (dtucker) [kex.c] Only enable CURVE25519_SHA256 if we actually have | ||
25 | EVP_sha256. | ||
24 | 26 | ||
25 | 20131107 | 27 | 20131107 |
26 | - (djm) [ssh-pkcs11.c] Bring back "non-constant initialiser" fix (rev 1.5) | 28 | - (djm) [ssh-pkcs11.c] Bring back "non-constant initialiser" fix (rev 1.5) |
@@ -80,7 +80,9 @@ static const struct kexalg kexalgs[] = { | |||
80 | { KEX_ECDH_SHA2_NISTP384, KEX_ECDH_SHA2, NID_secp384r1, EVP_sha384 }, | 80 | { KEX_ECDH_SHA2_NISTP384, KEX_ECDH_SHA2, NID_secp384r1, EVP_sha384 }, |
81 | { KEX_ECDH_SHA2_NISTP521, KEX_ECDH_SHA2, NID_secp521r1, EVP_sha512 }, | 81 | { KEX_ECDH_SHA2_NISTP521, KEX_ECDH_SHA2, NID_secp521r1, EVP_sha512 }, |
82 | #endif | 82 | #endif |
83 | #ifdef HAVE_EVP_SHA256 | ||
83 | { KEX_CURVE25519_SHA256, KEX_C25519_SHA256, 0, EVP_sha256 }, | 84 | { KEX_CURVE25519_SHA256, KEX_C25519_SHA256, 0, EVP_sha256 }, |
85 | #endif | ||
84 | { NULL, -1, -1, NULL}, | 86 | { NULL, -1, -1, NULL}, |
85 | }; | 87 | }; |
86 | 88 | ||