1 files changed, 8 insertions, 8 deletions
diff --git a/src/lib/libssl/ssl_seclevel.c b/src/lib/libssl/ssl_seclevel.c
index 35f8b8891b..2e0b74141f 100644
--- a/src/lib/libssl/ssl_seclevel.c
+++ b/src/lib/libssl/ssl_seclevel.c
@@ -1,4 +1,4 @@
-/*      $OpenBSD: ssl_seclevel.c,v 1.14 2022/06/30 16:05:07 tb Exp $ */
+/*      $OpenBSD: ssl_seclevel.c,v 1.15 2022/07/02 16:00:12 tb Exp $ */
 /*
 * Copyright (c) 2020 Theo Buehler <tb@openbsd.org>
 *
@@ -401,23 +401,23 @@ ssl_security_cert_chain(const SSL *ssl, STACK_OF(X509) *sk, X509 *x509,
 }
 int
-ssl_security_supported_group(const SSL *ssl, uint16_t curve_id)
+ssl_security_supported_group(const SSL *ssl, uint16_t group_id)
 {
        CBB cbb;
        int bits, nid;
-        uint8_t curve[2];
+        uint8_t group[2];
-        if ((bits = tls1_ec_curve_id2bits(curve_id)) == 0)
+        if (!tls1_ec_group_id2bits(group_id, &bits))
                return 0;
-        if ((nid = tls1_ec_curve_id2nid(curve_id)) == NID_undef)
+        if (!tls1_ec_group_id2nid(group_id, &nid))
                return 0;
-        if (!CBB_init_fixed(&cbb, curve, sizeof(curve)))
+        if (!CBB_init_fixed(&cbb, group, sizeof(group)))
                return 0;
-        if (!CBB_add_u16(&cbb, curve_id))
+        if (!CBB_add_u16(&cbb, group_id))
                return 0;
        if (!CBB_finish(&cbb, NULL, NULL))
                return 0;
-        return ssl_security(ssl, SSL_SECOP_CURVE_SUPPORTED, bits, nid, curve);
+        return ssl_security(ssl, SSL_SECOP_CURVE_SUPPORTED, bits, nid, group);
 }

diff --git a/src/lib/libssl/ssl_seclevel.c b/src/lib/libssl/ssl_seclevel.c index 35f8b8891b..2e0b74141f 100644 --- a/src/lib/libssl/ssl_seclevel.c +++ b/src/lib/libssl/ssl_seclevel.c
@@ -1,4 +1,4 @@
1	/* $OpenBSD: ssl_seclevel.c,v 1.14 2022/06/30 16:05:07 tb Exp $ */	1	/* $OpenBSD: ssl_seclevel.c,v 1.15 2022/07/02 16:00:12 tb Exp $ */
2	/*	2	/*
3	* Copyright (c) 2020 Theo Buehler <tb@openbsd.org>	3	* Copyright (c) 2020 Theo Buehler <tb@openbsd.org>
4	*	4	*
@@ -401,23 +401,23 @@ ssl_security_cert_chain(const SSL ssl, STACK_OF(X509) sk, X509 *x509,
401	}	401	}
402		402
403	int	403	int
404	ssl_security_supported_group(const SSL *ssl, uint16_t curve_id)	404	ssl_security_supported_group(const SSL *ssl, uint16_t group_id)
405	{	405	{
406	CBB cbb;	406	CBB cbb;
407	int bits, nid;	407	int bits, nid;
408	uint8_t curve[2];	408	uint8_t group[2];
409		409
410	if ((bits = tls1_ec_curve_id2bits(curve_id)) == 0)	410	if (!tls1_ec_group_id2bits(group_id, &bits))
411	return 0;	411	return 0;
412	if ((nid = tls1_ec_curve_id2nid(curve_id)) == NID_undef)	412	if (!tls1_ec_group_id2nid(group_id, &nid))
413	return 0;	413	return 0;
414		414
415	if (!CBB_init_fixed(&cbb, curve, sizeof(curve)))	415	if (!CBB_init_fixed(&cbb, group, sizeof(group)))
416	return 0;	416	return 0;
417	if (!CBB_add_u16(&cbb, curve_id))	417	if (!CBB_add_u16(&cbb, group_id))
418	return 0;	418	return 0;
419	if (!CBB_finish(&cbb, NULL, NULL))	419	if (!CBB_finish(&cbb, NULL, NULL))
420	return 0;	420	return 0;
421		421
422	return ssl_security(ssl, SSL_SECOP_CURVE_SUPPORTED, bits, nid, curve);	422	return ssl_security(ssl, SSL_SECOP_CURVE_SUPPORTED, bits, nid, group);
423	}	423	}