git.openssl.org Git - openssl.git/commit

author	Tomas Mraz <tomas@openssl.org>
	Thu, 10 Feb 2022 10:49:37 +0000 (11:49 +0100)
committer	Pauli <pauli@openssl.org>
	Thu, 17 Feb 2022 02:21:01 +0000 (13:21 +1100)
commit	d5530efada83825ef239a8458db541adc4b422ec
tree	015266b20587d4c1726cc798dce1ce495800c767	tree \| snapshot
parent	3d27ac8d92ef89c202b518cf6c4e15477eb594b2	commit \| diff

Add back check for the DH public key size

This is needed for TLS-1.3.

Also add check for uncompressed point format for ECDHE as
the other formats are not allowed by RFC 8446.

Fixes #17667

Reviewed-by: Paul Dale <pauli@openssl.org>
(Merged from https://github.com/openssl/openssl/pull/17678)

ssl/ssl_local.h		diff \| blob \| history
ssl/statem/extensions_clnt.c		diff \| blob \| history
ssl/statem/extensions_srvr.c		diff \| blob \| history
ssl/t1_lib.c		diff \| blob \| history

Unnamed repository; edit this file 'description' to name the repository.

RSS Atom