summaryrefslogtreecommitdiff
diff options
context:
space:
mode:
authorDarren Tucker <dtucker@zip.com.au>2014-06-11 07:37:25 +1000
committerDarren Tucker <dtucker@zip.com.au>2014-06-11 07:37:25 +1000
commitd7af0cc5bf273eeed0897a99420bc26841d07d8f (patch)
tree8c58596e69adb058a139ba6df426b405f86bdbad
parent67508ac2563c33d582be181a3e777c65f549d22f (diff)
- (dtucker) [myprosal.h] Don't include curve25519-sha256@libssh.org in
the proposal if the version of OpenSSL we're using doesn't support ECC.
Diffstat
-rw-r--r--ChangeLog2
-rw-r--r--myproposal.h9
2 files changed, 9 insertions, 2 deletions
diff --git a/ChangeLog b/ChangeLog
index a830e281d..92adafcc7 100644
--- a/ChangeLog
+++ b/ChangeLog
@@ -2,6 +2,8 @@
2 - (dtucker) [regress/unittests/sshbuf/test_sshbuf_getput_crypto.c 2 - (dtucker) [regress/unittests/sshbuf/test_sshbuf_getput_crypto.c
3 regress/unittests/sshbuf/test_sshbuf_getput_fuzz.c] Only do NISTP256 3 regress/unittests/sshbuf/test_sshbuf_getput_fuzz.c] Only do NISTP256
4 curve tests if OpenSSL has them. 4 curve tests if OpenSSL has them.
5 - (dtucker) [myprosal.h] Don't include curve25519-sha256@libssh.org in
6 the proposal if the version of OpenSSL we're using doesn't support ECC.
5 7
620140527 820140527
7 - (djm) [cipher.c] Fix merge botch. 9 - (djm) [cipher.c] Fix merge botch.
diff --git a/myproposal.h b/myproposal.h
index 30cb20b44..d42988996 100644
--- a/myproposal.h
+++ b/myproposal.h
@@ -78,8 +78,13 @@
78#endif 78#endif
79 79
80#ifdef WITH_OPENSSL 80#ifdef WITH_OPENSSL
81#define KEX_SERVER_KEX \ 81# ifdef OPENSSL_HAS_ECC
82 "curve25519-sha256@libssh.org," \ 82# define KEX_CURVE25519_METHODS "curve25519-sha256@libssh.org,"
83# else
84# define KEX_CURVE25519_METHODS ""
85# endif
86#define KEX_SERVER_KEX \
87 KEX_CURVE25519_METHODS \
83 KEX_ECDH_METHODS \ 88 KEX_ECDH_METHODS \
84 KEX_SHA256_METHODS \ 89 KEX_SHA256_METHODS \
85 "diffie-hellman-group14-sha1" 90 "diffie-hellman-group14-sha1"
generated by cgit v1.2.3 (git 2.39.1) at 2024-07-08 08:13:35 +0000