CVSROOT: /cvs
Module name: src
Changes by: js...@cvs.openbsd.org 2022/01/06 11:23:56
Modified files:
lib/libssl : s3_lib.c ssl_cert.c ssl_clnt.c ssl_locl.h
ssl_tlsext.c tls_internal.h tls_key_share.c
Log message:
Convert legacy TLS client to tls_key_share.
This requires adding DHE support to tls_key_share. In doing so,
tls_key_share_peer_public() has to lose the group argument and gains
an invalid_key argument. The one place that actually needs the group
check is tlsext_keyshare_client_parse(), so add code to do this.
ok inoguchi@ tb@
