1 files changed, 19 insertions, 24 deletions
diff --git a/src/lib/libssl/t1_lib.c b/src/lib/libssl/t1_lib.c
index 2bc830b2ed..f091dd001b 100644
--- a/src/lib/libssl/t1_lib.c
+++ b/src/lib/libssl/t1_lib.c
@@ -1,4 +1,4 @@
-/* $OpenBSD: t1_lib.c,v 1.175 2020/09/07 08:04:29 tb Exp $ */
+/* $OpenBSD: t1_lib.c,v 1.176 2020/09/12 17:25:11 tb Exp $ */
 /* Copyright (C) 1995-1998 Eric Young (eay@cryptsoft.com)
 * All rights reserved.
 *
@@ -506,43 +506,38 @@ tls1_set_ec_id(uint16_t *curve_id, uint8_t *comp_id, EC_KEY *ec)
 {
        const EC_GROUP *grp;
        const EC_METHOD *meth;
-        int is_prime = 0;
+        int prime_field;
-        int nid, id;
+        int nid;
        if (ec == NULL)
                return (0);
-        /* Determine if it is a prime field. */
+        /* Determine whether the curve is defined over a prime field. */
        if ((grp = EC_KEY_get0_group(ec)) == NULL)
                return (0);
        if ((meth = EC_GROUP_method_of(grp)) == NULL)
                return (0);
-        if (EC_METHOD_get_field_type(meth) == NID_X9_62_prime_field)
+        prime_field = (EC_METHOD_get_field_type(meth) == NID_X9_62_prime_field);
-                is_prime = 1;
-        /* Determine curve ID. */
+        /* Determine curve ID - NID_undef results in a curve ID of zero. */
        nid = EC_GROUP_get_curve_name(grp);
-        id = tls1_ec_nid2curve_id(nid);
        /* If we have an ID set it, otherwise set arbitrary explicit curve. */
-        if (id != 0)
+        if ((*curve_id = tls1_ec_nid2curve_id(nid)) == 0)
-                *curve_id = id;
+                *curve_id = prime_field ? 0xff01 : 0xff02;
-        else
-                *curve_id = is_prime ? 0xff01 : 0xff02;
-        /* Specify the compression identifier. */
+        if (comp_id == NULL)
-        if (comp_id != NULL) {
+                return (1);
-                if (EC_KEY_get0_public_key(ec) == NULL)
-                        return (0);
-                if (EC_KEY_get_conv_form(ec) == POINT_CONVERSION_COMPRESSED) {
+        /* Specify the compression identifier. */
-                        *comp_id = is_prime ?
+        if (EC_KEY_get0_public_key(ec) == NULL)
-                            TLSEXT_ECPOINTFORMAT_ansiX962_compressed_prime :
+                return (0);
-                            TLSEXT_ECPOINTFORMAT_ansiX962_compressed_char2;
+        *comp_id = TLSEXT_ECPOINTFORMAT_uncompressed;
-                } else {
+        if (EC_KEY_get_conv_form(ec) == POINT_CONVERSION_COMPRESSED) {
-                        *comp_id = TLSEXT_ECPOINTFORMAT_uncompressed;
+                *comp_id = TLSEXT_ECPOINTFORMAT_ansiX962_compressed_char2;
-                }
+                if (prime_field)
+                        *comp_id = TLSEXT_ECPOINTFORMAT_ansiX962_compressed_prime;
        }
        return (1);
 }

diff --git a/src/lib/libssl/t1_lib.c b/src/lib/libssl/t1_lib.c index 2bc830b2ed..f091dd001b 100644 --- a/src/lib/libssl/t1_lib.c +++ b/src/lib/libssl/t1_lib.c
@@ -1,4 +1,4 @@
1	/* $OpenBSD: t1_lib.c,v 1.175 2020/09/07 08:04:29 tb Exp $ */	1	/* $OpenBSD: t1_lib.c,v 1.176 2020/09/12 17:25:11 tb Exp $ */
2	/* Copyright (C) 1995-1998 Eric Young (eay@cryptsoft.com)	2	/* Copyright (C) 1995-1998 Eric Young (eay@cryptsoft.com)
3	* All rights reserved.	3	* All rights reserved.
4	*	4	*
@@ -506,43 +506,38 @@ tls1_set_ec_id(uint16_t curve_id, uint8_t comp_id, EC_KEY *ec)
506	{	506	{
507	const EC_GROUP *grp;	507	const EC_GROUP *grp;
508	const EC_METHOD *meth;	508	const EC_METHOD *meth;
509	int is_prime = 0;	509	int prime_field;
510	int nid, id;	510	int nid;
511		511
512	if (ec == NULL)	512	if (ec == NULL)
513	return (0);	513	return (0);
514		514
515	/* Determine if it is a prime field. */	515	/* Determine whether the curve is defined over a prime field. */
516	if ((grp = EC_KEY_get0_group(ec)) == NULL)	516	if ((grp = EC_KEY_get0_group(ec)) == NULL)
517	return (0);	517	return (0);
518	if ((meth = EC_GROUP_method_of(grp)) == NULL)	518	if ((meth = EC_GROUP_method_of(grp)) == NULL)
519	return (0);	519	return (0);
520	if (EC_METHOD_get_field_type(meth) == NID_X9_62_prime_field)	520	prime_field = (EC_METHOD_get_field_type(meth) == NID_X9_62_prime_field);
521	is_prime = 1;
522		521
523	/* Determine curve ID. */	522	/* Determine curve ID - NID_undef results in a curve ID of zero. */
524	nid = EC_GROUP_get_curve_name(grp);	523	nid = EC_GROUP_get_curve_name(grp);
525	id = tls1_ec_nid2curve_id(nid);
526
527	/* If we have an ID set it, otherwise set arbitrary explicit curve. */	524	/* If we have an ID set it, otherwise set arbitrary explicit curve. */
528	if (id != 0)	525	if ((*curve_id = tls1_ec_nid2curve_id(nid)) == 0)
529	*curve_id = id;	526	*curve_id = prime_field ? 0xff01 : 0xff02;
530	else
531	*curve_id = is_prime ? 0xff01 : 0xff02;
532		527
533	/* Specify the compression identifier. */	528	if (comp_id == NULL)
534	if (comp_id != NULL) {	529	return (1);
535	if (EC_KEY_get0_public_key(ec) == NULL)
536	return (0);
537		530
538	if (EC_KEY_get_conv_form(ec) == POINT_CONVERSION_COMPRESSED) {	531	/* Specify the compression identifier. */
539	*comp_id = is_prime ?	532	if (EC_KEY_get0_public_key(ec) == NULL)
540	TLSEXT_ECPOINTFORMAT_ansiX962_compressed_prime :	533	return (0);
541	TLSEXT_ECPOINTFORMAT_ansiX962_compressed_char2;	534	*comp_id = TLSEXT_ECPOINTFORMAT_uncompressed;
542	} else {	535	if (EC_KEY_get_conv_form(ec) == POINT_CONVERSION_COMPRESSED) {
543	*comp_id = TLSEXT_ECPOINTFORMAT_uncompressed;	536	*comp_id = TLSEXT_ECPOINTFORMAT_ansiX962_compressed_char2;
544	}	537	if (prime_field)
		538	*comp_id = TLSEXT_ECPOINTFORMAT_ansiX962_compressed_prime;
545	}	539	}
		540
546	return (1);	541	return (1);
547	}	542	}
548		543