OpenSSL: Add openssl_ecdh_curves parameter
Some versions of OpenSSL need server support for ECDH to be explicitly
enabled, so provide a new parameter for doing so and all
SSL_{,CTX_}set_ecdh_auto() for versions that need it to enable automatic
selection.
Signed-off-by: Hristo Venev <hristo@venev.name>
This commit is contained in:
Hristo Venev
Jouni Malinen
parent
b98933eafc
commit
0521c6ebb3
5 changed files with 90 additions and 0 deletions
|
|
@ -1524,6 +1524,12 @@ int tls_global_set_params(void *tls_ctx,
|
|||
return -1;
|
||||
}
|
||||
|
||||
if (params->openssl_ecdh_curves) {
|
||||
wpa_printf(MSG_INFO,
|
||||
"wolfSSL: openssl_ecdh_curves not supported");
|
||||
return -1;
|
||||
}
|
||||
|
||||
#ifdef HAVE_SESSION_TICKET
|
||||
/* Session ticket is off by default - can't disable once on. */
|
||||
if (!(params->flags & TLS_CONN_DISABLE_SESSION_TICKET))
|
||||
|
|
|
|||
Loading…
Add table
Add a link
Reference in a new issue