generic-library/openssl
1
0
Fork 0
Code Issues Pull Requests Releases Wiki Activity

use SSL_kDHE throughout instead of SSL_kEDH

Browse Source 
DHE is the standard term used by the RFCs and by other TLS
implementations.  It's useful to have the internal variables use the
standard terminology.

This patch leaves a synonym SSL_kEDH in place, though, so that older
code can still be built against it, since that has been the
traditional API.  SSL_kEDH should probably be deprecated at some
point, though.
This commit is contained in:
Daniel Kahn Gillmor
2013-12-19 15:11:15 -05:00
committed by Dr. Stephen Henson
parent 75cb3771b4
commit 5a21cadbeb
10 changed files with 76 additions and 75 deletions
Download Patch File Download Diff File Expand all files Collapse all files

10
ssl/ssl_lib.c
View File

@@ -2411,20 +2411,20 @@ void ssl_set_cert_masks(CERT *c, const SSL_CIPHER *cipher)
emask_k|=SSL_kRSA;
#if 0
/* The match needs to be both kEDH and aRSA or aDSA, so don't worry */
/* The match needs to be both kDHE and aRSA or aDSA, so don't worry */
if ( (dh_tmp || dh_rsa || dh_dsa) &&
(rsa_enc || rsa_sign || dsa_sign))
mask_k|=SSL_kEDH;
mask_k|=SSL_kDHE;
if ((dh_tmp_export || dh_rsa_export || dh_dsa_export) &&
(rsa_enc || rsa_sign || dsa_sign))
emask_k|=SSL_kEDH;
emask_k|=SSL_kDHE;
#endif
if (dh_tmp_export)
emask_k|=SSL_kEDH;
emask_k|=SSL_kDHE;
if (dh_tmp)
mask_k|=SSL_kEDH;
mask_k|=SSL_kDHE;
if (dh_rsa) mask_k|=SSL_kDHr;
if (dh_rsa_export) emask_k|=SSL_kDHr;