projects / openssl.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: 4753ad8) | patch
Allow TLSv1.3 EC certs to use compressed points
authorMatt Caswell <matt@openssl.org>
Mon, 23 Apr 2018 13:02:23 +0000 (14:02 +0100)
committerMatt Caswell <matt@openssl.org>
Tue, 24 Apr 2018 08:28:17 +0000 (09:28 +0100)
commit7500bc337ae61ff370c8e77bb018114d73dfcf18
treebed7a7cad15709fc44ce1859027262ff719661d2tree | snapshot
parent4753ad858c299a34815988907989c98d5285e57ecommit | diff
Allow TLSv1.3 EC certs to use compressed points

The spec does not prohib certs form using compressed points. It only
requires that points in a key share are uncompressed. It says nothing
about point compression for certs, so we should not fail if a cert uses a
compressed point.

Fixes #5743

Reviewed-by: Rich Salz <rsalz@openssl.org>
Reviewed-by: Bernd Edlinger <bernd.edlinger@hotmail.de>
(Merged from https://github.com/openssl/openssl/pull/6055)
ssl/t1_lib.c diff | blob | history
test/ssl-tests/20-cert-select.conf diff | blob | history
test/ssl-tests/20-cert-select.conf.in diff | blob | history
Unnamed repository; edit this file 'description' to name the repository.