Remove support for static ECDH cipher suites Signed-off-by: Ben Taylor <ben.taylor@linaro.org>

commit: 15f1d7f812520c76a7b4ed59b6557a51377b351f [log] [tgz]
author: Ben Taylor <ben.taylor@linaro.org> Thu Jul 10 09:41:09 2025 +0100
committer: Ben Taylor <ben.taylor@linaro.org> Thu Sep 11 13:22:40 2025 +0100
tree: 5c9541c5d2b243a8c6700538a959a6c0829e41e6
parent: 414878aa7fcb72a6581cf9194f516397b0751399 [diff] [blame]
diff --git a/include/mbedtls/ssl.h b/include/mbedtls/ssl.h
index 44d28a2..02e527c 100644
--- a/include/mbedtls/ssl.h
+++ b/include/mbedtls/ssl.h

@@ -659,9 +659,7 @@
 union mbedtls_ssl_premaster_secret {
     unsigned char dummy; /* Make the union non-empty even with SSL disabled */
 #if defined(MBEDTLS_KEY_EXCHANGE_ECDHE_RSA_ENABLED)    || \
-    defined(MBEDTLS_KEY_EXCHANGE_ECDHE_ECDSA_ENABLED)  || \
-    defined(MBEDTLS_KEY_EXCHANGE_ECDH_RSA_ENABLED)     || \
-    defined(MBEDTLS_KEY_EXCHANGE_ECDH_ECDSA_ENABLED)
+    defined(MBEDTLS_KEY_EXCHANGE_ECDHE_ECDSA_ENABLED)
     unsigned char _pms_ecdh[MBEDTLS_ECP_MAX_BYTES];    /* RFC 4492 5.10 */
 #endif
 #if defined(MBEDTLS_KEY_EXCHANGE_PSK_ENABLED)
commit	15f1d7f812520c76a7b4ed59b6557a51377b351f	[log] [tgz]
author	Ben Taylor <ben.taylor@linaro.org>	Thu Jul 10 09:41:09 2025 +0100
committer	Ben Taylor <ben.taylor@linaro.org>	Thu Sep 11 13:22:40 2025 +0100
tree	5c9541c5d2b243a8c6700538a959a6c0829e41e6
parent	414878aa7fcb72a6581cf9194f516397b0751399 [diff] [blame]