Rename uses 'curve' to 'group' and rework tls1 group API.

This reworks various tls1_ curve APIs to indicate success via a boolean return value and move the output to an out parameter. This makes the caller code easier and more consistent. Based on a suggestion by jsing ok jsing
author: tb <> 2022-07-02 16:00:12 +0000
committer: tb <> 2022-07-02 16:00:12 +0000
commit: f7fed9455632a5807e76bd3a28879f5a87857c53 (patch)
tree: 9d374c62eeff973ee0b7721a87b5f66c56832f1e /src/lib/libssl/tls13_client.c
parent: c757fe9bb6c16f47a415034b69dda698116160ba (diff)
download: openbsd-f7fed9455632a5807e76bd3a28879f5a87857c53.tar.gz
openbsd-f7fed9455632a5807e76bd3a28879f5a87857c53.tar.bz2
openbsd-f7fed9455632a5807e76bd3a28879f5a87857c53.zip
1 files changed, 2 insertions, 2 deletions
diff --git a/src/lib/libssl/tls13_client.c b/src/lib/libssl/tls13_client.c
index 11eb880a6e..fb2dd69eb2 100644
--- a/src/lib/libssl/tls13_client.c
+++ b/src/lib/libssl/tls13_client.c
@@ -1,4 +1,4 @@
-/* $OpenBSD: tls13_client.c,v 1.94 2022/02/03 16:33:12 jsing Exp $ */
+/* $OpenBSD: tls13_client.c,v 1.95 2022/07/02 16:00:12 tb Exp $ */
 /*
 * Copyright (c) 2018, 2019 Joel Sing <jsing@openbsd.org>
 *
@@ -440,7 +440,7 @@ tls13_client_hello_retry_send(struct tls13_ctx *ctx, CBB *cbb)
         * supported groups and is not the same as the key share we previously
         * offered.
         */
-        if (!tls1_check_curve(ctx->ssl, ctx->hs->tls13.server_group))
+        if (!tls1_check_group(ctx->ssl, ctx->hs->tls13.server_group))
                return 0; /* XXX alert */
        if (ctx->hs->tls13.server_group == tls_key_share_group(ctx->hs->key_share))
                return 0; /* XXX alert */
author	tb <>	2022-07-02 16:00:12 +0000
committer	tb <>	2022-07-02 16:00:12 +0000
commit	f7fed9455632a5807e76bd3a28879f5a87857c53 (patch)
tree	9d374c62eeff973ee0b7721a87b5f66c56832f1e /src/lib/libssl/tls13_client.c
parent	c757fe9bb6c16f47a415034b69dda698116160ba (diff)
download	openbsd-f7fed9455632a5807e76bd3a28879f5a87857c53.tar.gz openbsd-f7fed9455632a5807e76bd3a28879f5a87857c53.tar.bz2 openbsd-f7fed9455632a5807e76bd3a28879f5a87857c53.zip

diff --git a/src/lib/libssl/tls13_client.c b/src/lib/libssl/tls13_client.c index 11eb880a6e..fb2dd69eb2 100644 --- a/src/lib/libssl/tls13_client.c +++ b/src/lib/libssl/tls13_client.c
@@ -1,4 +1,4 @@
1	/* $OpenBSD: tls13_client.c,v 1.94 2022/02/03 16:33:12 jsing Exp $ */	1	/* $OpenBSD: tls13_client.c,v 1.95 2022/07/02 16:00:12 tb Exp $ */
2	/*	2	/*
3	* Copyright (c) 2018, 2019 Joel Sing <jsing@openbsd.org>	3	* Copyright (c) 2018, 2019 Joel Sing <jsing@openbsd.org>
4	*	4	*
@@ -440,7 +440,7 @@ tls13_client_hello_retry_send(struct tls13_ctx ctx, CBB cbb)
440	* supported groups and is not the same as the key share we previously	440	* supported groups and is not the same as the key share we previously
441	* offered.	441	* offered.
442	*/	442	*/
443	if (!tls1_check_curve(ctx->ssl, ctx->hs->tls13.server_group))	443	if (!tls1_check_group(ctx->ssl, ctx->hs->tls13.server_group))
444	return 0; /* XXX alert */	444	return 0; /* XXX alert */
445	if (ctx->hs->tls13.server_group == tls_key_share_group(ctx->hs->key_share))	445	if (ctx->hs->tls13.server_group == tls_key_share_group(ctx->hs->key_share))
446	return 0; /* XXX alert */	446	return 0; /* XXX alert */