- Added predefined DHM groups from RFC 5114

commit: 29b64761fd334049a7a2fe6648354a6ade85bc62 [log] [tgz]
author: Paul Bakker <p.j.bakker@polarssl.org> Tue Sep 25 09:36:44 2012 +0000
committer: Paul Bakker <p.j.bakker@polarssl.org> Tue Sep 25 09:36:44 2012 +0000
tree: 2236b1e098b95b6c2d1e2b704f0deb97b8e6b05a
parent: b60b95fd7f32eed3e5d9a8a12ba478ec71eea209 [diff]
diff --git a/library/ssl_cli.c b/library/ssl_cli.c
index 3d5008b..570785f 100644
--- a/library/ssl_cli.c
+++ b/library/ssl_cli.c

@@ -991,7 +991,8 @@
         ssl->out_msg[5] = (unsigned char)( n      );
         i = 6;
 
-        ret = dhm_make_public( &ssl->handshake->dhm_ctx, 256,
+        ret = dhm_make_public( &ssl->handshake->dhm_ctx,
+                                mpi_size( &ssl->handshake->dhm_ctx.P ),
                                &ssl->out_msg[i], n,
                                 ssl->f_rng, ssl->p_rng );
         if( ret != 0 )

diff --git a/library/ssl_srv.c b/library/ssl_srv.c
index 209e5bd..c28716c 100644
--- a/library/ssl_srv.c
+++ b/library/ssl_srv.c

@@ -676,7 +676,9 @@
         return( ret );
     }
 
-    if( ( ret = dhm_make_params( &ssl->handshake->dhm_ctx, 256, ssl->out_msg + 4,
+    if( ( ret = dhm_make_params( &ssl->handshake->dhm_ctx,
+                                  mpi_size( &ssl->handshake->dhm_ctx.P ),
+                                  ssl->out_msg + 4,
                                   &n, ssl->f_rng, ssl->p_rng ) ) != 0 )
     {
         SSL_DEBUG_RET( 1, "dhm_make_params", ret );
commit	29b64761fd334049a7a2fe6648354a6ade85bc62	[log] [tgz]
author	Paul Bakker <p.j.bakker@polarssl.org>	Tue Sep 25 09:36:44 2012 +0000
committer	Paul Bakker <p.j.bakker@polarssl.org>	Tue Sep 25 09:36:44 2012 +0000
tree	2236b1e098b95b6c2d1e2b704f0deb97b8e6b05a
parent	b60b95fd7f32eed3e5d9a8a12ba478ec71eea209 [diff]