Tolerate a Certificate using a non-supported group on server side (e9d26dc8) · Commits · CYBER - Cyber Security / TS 103 523 MSP / TLMSP / TLMSP OpenSSL

Commit e9d26dc8 authored Mar 13, 2018 by

Matt Caswell

Tolerate a Certificate using a non-supported group on server side



If a server has been configured to use an ECDSA certificate, we should
allow it regardless of whether the server's own supported groups list
includes the certificate's group.

Fixes #2033

Reviewed-by: Bernd Edlinger <bernd.edlinger@hotmail.de>
(Merged from https://github.com/openssl/openssl/pull/5607)

parent cdabf89a

Hide whitespace changes

Inline Side-by-side

Please register or to comment