Skip to content
Commit c5b831f2 authored by Matt Caswell's avatar Matt Caswell
Browse files

Always generate DH keys for ephemeral DH cipher suites 



Modified version of the commit ffaef3f1 in the master branch by Stephen
Henson. This makes the SSL_OP_SINGLE_DH_USE option a no-op and always
generates a new DH key for every handshake regardless.

CVE-2016-0701 (fix part 2 or 2)

Issue reported by Antonio Sanso

Reviewed-by: default avatarViktor Dukhovni <viktor@openssl.org>
parent 878e2c5b
Show whitespace changes
Inline Side-by-side
0% or .
You are about to add 0 people to the discussion. Proceed with caution.
Please register or to comment