Rename dh_tmp to dhe_params.

Support for non-ephemeral DH was removed a long time ago - as such, the dh_tmp and dh_tmp_cb are used for DHE parameters. Rename them to reflect reality. ok inoguchi@ tb@
author: jsing <> 2022-01-07 16:45:06 +0000
committer: jsing <> 2022-01-07 16:45:06 +0000
commit: 2c1d085f7eb5453e4fb95d057e86c38c946db67c (patch)
tree: 7e6b16ad127edd4e8e0cceddf4c00ec784c29233 /src/lib/libssl/ssl_srvr.c
parent: 2c6556e224486550bce48b776ee3df483e7fffcb (diff)
download: openbsd-2c1d085f7eb5453e4fb95d057e86c38c946db67c.tar.gz
openbsd-2c1d085f7eb5453e4fb95d057e86c38c946db67c.tar.bz2
openbsd-2c1d085f7eb5453e4fb95d057e86c38c946db67c.zip
1 files changed, 5 insertions, 5 deletions
diff --git a/src/lib/libssl/ssl_srvr.c b/src/lib/libssl/ssl_srvr.c
index b66a2c108d..9fad66b91a 100644
--- a/src/lib/libssl/ssl_srvr.c
+++ b/src/lib/libssl/ssl_srvr.c
@@ -1,4 +1,4 @@
-/* $OpenBSD: ssl_srvr.c,v 1.131 2022/01/07 15:46:30 jsing Exp $ */
+/* $OpenBSD: ssl_srvr.c,v 1.132 2022/01/07 16:45:06 jsing Exp $ */
 /* Copyright (C) 1995-1998 Eric Young (eay@cryptsoft.com)
 * All rights reserved.
 *
@@ -1315,7 +1315,7 @@ ssl3_send_server_kex_dhe(SSL *s, CBB *cbb)
        if ((S3I(s)->hs.key_share = tls_key_share_new_nid(nid)) == NULL)
                goto err;
-        if (s->cert->dh_tmp_auto != 0) {
+        if (s->cert->dhe_params_auto != 0) {
                size_t key_bits;
                if ((key_bits = ssl_dhe_params_auto_key_bits(s)) == 0) {
@@ -1327,10 +1327,10 @@ ssl3_send_server_kex_dhe(SSL *s, CBB *cbb)
                tls_key_share_set_key_bits(S3I(s)->hs.key_share,
                    key_bits);
        } else {
-                DH *dh_params = s->cert->dh_tmp;
+                DH *dh_params = s->cert->dhe_params;
-                if (dh_params == NULL && s->cert->dh_tmp_cb != NULL)
+                if (dh_params == NULL && s->cert->dhe_params_cb != NULL)
-                        dh_params = s->cert->dh_tmp_cb(s, 0,
+                        dh_params = s->cert->dhe_params_cb(s, 0,
                            SSL_C_PKEYLENGTH(S3I(s)->hs.cipher));
                if (dh_params == NULL) {
author	jsing <>	2022-01-07 16:45:06 +0000
committer	jsing <>	2022-01-07 16:45:06 +0000
commit	2c1d085f7eb5453e4fb95d057e86c38c946db67c (patch)
tree	7e6b16ad127edd4e8e0cceddf4c00ec784c29233 /src/lib/libssl/ssl_srvr.c
parent	2c6556e224486550bce48b776ee3df483e7fffcb (diff)
download	openbsd-2c1d085f7eb5453e4fb95d057e86c38c946db67c.tar.gz openbsd-2c1d085f7eb5453e4fb95d057e86c38c946db67c.tar.bz2 openbsd-2c1d085f7eb5453e4fb95d057e86c38c946db67c.zip

diff --git a/src/lib/libssl/ssl_srvr.c b/src/lib/libssl/ssl_srvr.c index b66a2c108d..9fad66b91a 100644 --- a/src/lib/libssl/ssl_srvr.c +++ b/src/lib/libssl/ssl_srvr.c
@@ -1,4 +1,4 @@
1	/* $OpenBSD: ssl_srvr.c,v 1.131 2022/01/07 15:46:30 jsing Exp $ */	1	/* $OpenBSD: ssl_srvr.c,v 1.132 2022/01/07 16:45:06 jsing Exp $ */
2	/* Copyright (C) 1995-1998 Eric Young (eay@cryptsoft.com)	2	/* Copyright (C) 1995-1998 Eric Young (eay@cryptsoft.com)
3	* All rights reserved.	3	* All rights reserved.
4	*	4	*
@@ -1315,7 +1315,7 @@ ssl3_send_server_kex_dhe(SSL s, CBB cbb)
1315	if ((S3I(s)->hs.key_share = tls_key_share_new_nid(nid)) == NULL)	1315	if ((S3I(s)->hs.key_share = tls_key_share_new_nid(nid)) == NULL)
1316	goto err;	1316	goto err;
1317		1317
1318	if (s->cert->dh_tmp_auto != 0) {	1318	if (s->cert->dhe_params_auto != 0) {
1319	size_t key_bits;	1319	size_t key_bits;
1320		1320
1321	if ((key_bits = ssl_dhe_params_auto_key_bits(s)) == 0) {	1321	if ((key_bits = ssl_dhe_params_auto_key_bits(s)) == 0) {
@@ -1327,10 +1327,10 @@ ssl3_send_server_kex_dhe(SSL s, CBB cbb)
1327	tls_key_share_set_key_bits(S3I(s)->hs.key_share,	1327	tls_key_share_set_key_bits(S3I(s)->hs.key_share,
1328	key_bits);	1328	key_bits);
1329	} else {	1329	} else {
1330	DH *dh_params = s->cert->dh_tmp;	1330	DH *dh_params = s->cert->dhe_params;
1331		1331
1332	if (dh_params == NULL && s->cert->dh_tmp_cb != NULL)	1332	if (dh_params == NULL && s->cert->dhe_params_cb != NULL)
1333	dh_params = s->cert->dh_tmp_cb(s, 0,	1333	dh_params = s->cert->dhe_params_cb(s, 0,
1334	SSL_C_PKEYLENGTH(S3I(s)->hs.cipher));	1334	SSL_C_PKEYLENGTH(S3I(s)->hs.cipher));
1335		1335
1336	if (dh_params == NULL) {	1336	if (dh_params == NULL) {